From f4eb79e50bd5a1462c47ad259d632937d951bf96 Mon Sep 17 00:00:00 2001 From: Jan Kowalleck Date: Wed, 23 Oct 2024 12:01:34 +0200 Subject: [PATCH] feat: add Python 3.13 support (#818) Signed-off-by: Jan Kowalleck --- .github/workflows/python.yml | 7 +- pyproject.toml | 4 +- tests/__init__.py | 8 + .../environment/normalize-packagename/init.py | 2 + .../infiles/environment/with-extras/init.py | 1 + .../environment/with-extras/pinning.txt | 34 +-- .../with-license-pep639/pinning.txt | 2 +- ...p639-texts_with-license-pep639_1.0.xml.bin | 4 +- ...p639-texts_with-license-pep639_1.1.xml.bin | 66 ++--- ...639-texts_with-license-pep639_1.2.json.bin | 10 +- ...p639-texts_with-license-pep639_1.2.xml.bin | 70 +++--- ...639-texts_with-license-pep639_1.3.json.bin | 10 +- ...p639-texts_with-license-pep639_1.3.xml.bin | 70 +++--- ...639-texts_with-license-pep639_1.4.json.bin | 10 +- ...p639-texts_with-license-pep639_1.4.xml.bin | 70 +++--- ...639-texts_with-license-pep639_1.5.json.bin | 10 +- ...p639-texts_with-license-pep639_1.5.xml.bin | 70 +++--- ...639-texts_with-license-pep639_1.6.json.bin | 10 +- ...p639-texts_with-license-pep639_1.6.xml.bin | 70 +++--- .../pep639_with-license-pep639_1.0.xml.bin | 4 +- .../pep639_with-license-pep639_1.1.xml.bin | 6 +- .../pep639_with-license-pep639_1.2.json.bin | 10 +- .../pep639_with-license-pep639_1.2.xml.bin | 10 +- .../pep639_with-license-pep639_1.3.json.bin | 10 +- .../pep639_with-license-pep639_1.3.xml.bin | 10 +- .../pep639_with-license-pep639_1.4.json.bin | 10 +- .../pep639_with-license-pep639_1.4.xml.bin | 10 +- .../pep639_with-license-pep639_1.5.json.bin | 10 +- .../pep639_with-license-pep639_1.5.xml.bin | 10 +- .../pep639_with-license-pep639_1.6.json.bin | 10 +- .../pep639_with-license-pep639_1.6.xml.bin | 10 +- .../plain_normalize-packagename_1.0.xml.bin | 7 - .../plain_normalize-packagename_1.1.xml.bin | 17 -- .../plain_normalize-packagename_1.2.json.bin | 26 -- .../plain_normalize-packagename_1.2.xml.bin | 19 -- .../plain_normalize-packagename_1.3.json.bin | 26 -- .../plain_normalize-packagename_1.3.xml.bin | 19 -- .../plain_normalize-packagename_1.4.json.bin | 26 -- .../plain_normalize-packagename_1.4.xml.bin | 19 -- .../plain_normalize-packagename_1.5.json.bin | 26 -- .../plain_normalize-packagename_1.5.xml.bin | 19 -- .../plain_normalize-packagename_1.6.json.bin | 27 -- .../plain_normalize-packagename_1.6.xml.bin | 19 -- .../environment/plain_with-extras_1.0.xml.bin | 70 +++--- .../environment/plain_with-extras_1.1.xml.bin | 149 ++++++----- .../plain_with-extras_1.2.json.bin | 238 +++++++++--------- .../environment/plain_with-extras_1.2.xml.bin | 227 +++++++++-------- .../plain_with-extras_1.3.json.bin | 238 +++++++++--------- .../environment/plain_with-extras_1.3.xml.bin | 227 +++++++++-------- .../plain_with-extras_1.4.json.bin | 238 +++++++++--------- .../environment/plain_with-extras_1.4.xml.bin | 227 +++++++++-------- .../plain_with-extras_1.5.json.bin | 238 +++++++++--------- .../environment/plain_with-extras_1.5.xml.bin | 227 +++++++++-------- .../plain_with-extras_1.6.json.bin | 238 +++++++++--------- .../environment/plain_with-extras_1.6.xml.bin | 227 +++++++++-------- .../plain_with-license-pep639_1.0.xml.bin | 4 +- .../plain_with-license-pep639_1.1.xml.bin | 6 +- .../plain_with-license-pep639_1.2.json.bin | 10 +- .../plain_with-license-pep639_1.2.xml.bin | 10 +- .../plain_with-license-pep639_1.3.json.bin | 10 +- .../plain_with-license-pep639_1.3.xml.bin | 10 +- .../plain_with-license-pep639_1.4.json.bin | 10 +- .../plain_with-license-pep639_1.4.xml.bin | 10 +- .../plain_with-license-pep639_1.5.json.bin | 10 +- .../plain_with-license-pep639_1.5.xml.bin | 10 +- .../plain_with-license-pep639_1.6.json.bin | 10 +- .../plain_with-license-pep639_1.6.xml.bin | 10 +- .../texts_with-license-pep639_1.0.xml.bin | 4 +- .../texts_with-license-pep639_1.1.xml.bin | 6 +- .../texts_with-license-pep639_1.2.json.bin | 10 +- .../texts_with-license-pep639_1.2.xml.bin | 10 +- .../texts_with-license-pep639_1.3.json.bin | 10 +- .../texts_with-license-pep639_1.3.xml.bin | 10 +- .../texts_with-license-pep639_1.4.json.bin | 10 +- .../texts_with-license-pep639_1.4.xml.bin | 10 +- .../texts_with-license-pep639_1.5.json.bin | 10 +- .../texts_with-license-pep639_1.5.xml.bin | 10 +- .../texts_with-license-pep639_1.6.json.bin | 10 +- .../texts_with-license-pep639_1.6.xml.bin | 10 +- ...ain_regression-issue702_lock10_1.0.xml.bin | 2 +- ...ain_regression-issue702_lock10_1.1.xml.bin | 2 +- ...ain_regression-issue702_lock10_1.2.xml.bin | 2 +- ...ain_regression-issue702_lock10_1.3.xml.bin | 2 +- ...ain_regression-issue702_lock10_1.4.xml.bin | 2 +- ...ain_regression-issue702_lock10_1.5.xml.bin | 2 +- ...ain_regression-issue702_lock10_1.6.xml.bin | 2 +- ...ain_regression-issue702_lock11_1.0.xml.bin | 2 +- ...ain_regression-issue702_lock11_1.1.xml.bin | 2 +- ...ain_regression-issue702_lock11_1.2.xml.bin | 2 +- ...ain_regression-issue702_lock11_1.3.xml.bin | 2 +- ...ain_regression-issue702_lock11_1.4.xml.bin | 2 +- ...ain_regression-issue702_lock11_1.5.xml.bin | 2 +- ...ain_regression-issue702_lock11_1.6.xml.bin | 2 +- ...ain_regression-issue702_lock20_1.0.xml.bin | 2 +- ...ain_regression-issue702_lock20_1.1.xml.bin | 2 +- ...ain_regression-issue702_lock20_1.2.xml.bin | 2 +- ...ain_regression-issue702_lock20_1.3.xml.bin | 2 +- ...ain_regression-issue702_lock20_1.4.xml.bin | 2 +- ...ain_regression-issue702_lock20_1.5.xml.bin | 2 +- ...ain_regression-issue702_lock20_1.6.xml.bin | 2 +- .../poetry/plain_with-urls_lock10_1.0.xml.bin | 2 +- .../poetry/plain_with-urls_lock10_1.1.xml.bin | 2 +- .../poetry/plain_with-urls_lock10_1.2.xml.bin | 2 +- .../poetry/plain_with-urls_lock10_1.3.xml.bin | 2 +- .../poetry/plain_with-urls_lock10_1.4.xml.bin | 2 +- .../poetry/plain_with-urls_lock10_1.5.xml.bin | 2 +- .../poetry/plain_with-urls_lock10_1.6.xml.bin | 2 +- .../poetry/plain_with-urls_lock11_1.0.xml.bin | 2 +- .../poetry/plain_with-urls_lock11_1.1.xml.bin | 2 +- .../poetry/plain_with-urls_lock11_1.2.xml.bin | 2 +- .../poetry/plain_with-urls_lock11_1.3.xml.bin | 2 +- .../poetry/plain_with-urls_lock11_1.4.xml.bin | 2 +- .../poetry/plain_with-urls_lock11_1.5.xml.bin | 2 +- .../poetry/plain_with-urls_lock11_1.6.xml.bin | 2 +- .../poetry/plain_with-urls_lock20_1.0.xml.bin | 2 +- .../poetry/plain_with-urls_lock20_1.1.xml.bin | 2 +- .../poetry/plain_with-urls_lock20_1.2.xml.bin | 2 +- .../poetry/plain_with-urls_lock20_1.3.xml.bin | 2 +- .../poetry/plain_with-urls_lock20_1.4.xml.bin | 2 +- .../poetry/plain_with-urls_lock20_1.5.xml.bin | 2 +- .../poetry/plain_with-urls_lock20_1.6.xml.bin | 2 +- tox.ini | 2 +- 122 files changed, 1725 insertions(+), 2013 deletions(-) diff --git a/.github/workflows/python.yml b/.github/workflows/python.yml index 485c4c05b..1e3412367 100644 --- a/.github/workflows/python.yml +++ b/.github/workflows/python.yml @@ -71,10 +71,10 @@ jobs: fail-fast: false matrix: include: - - python-version: '3.12' + - python-version: '3.13' # latest os: ubuntu-latest toxenv-factors: '-current' - - python-version: '3.8' + - python-version: '3.8' # lowest os: ubuntu-latest toxenv-factors: '-lowest' steps: @@ -162,7 +162,8 @@ jobs: - macos-13 # macos-latest might be incompatible to py38 - see https://github.com/CycloneDX/cyclonedx-python-lib/pull/599#issuecomment-2077462142 - windows-latest python-version: - - "3.12" # highest supported + - "3.13" # highest supported + - "3.12" - "3.11" - "3.10" - "3.9" diff --git a/pyproject.toml b/pyproject.toml index 65b5646b2..726778546 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -30,8 +30,7 @@ include = [ { path="docs", format=["sdist"] }, ] exclude = [ - # exclude dotfiles and dotfolders - "**/.*", + "**/.*", # exclude dotfiles and dotfolders "docs/_build", "docs/processes", ] keywords = [ @@ -57,6 +56,7 @@ classifiers = [ "Programming Language :: Python :: 3.10", "Programming Language :: Python :: 3.11", "Programming Language :: Python :: 3.12", + "Programming Language :: Python :: 3.13", "Typing :: Typed" ] [tool.poetry.urls] diff --git a/tests/__init__.py b/tests/__init__.py index 2451c9929..a47f58105 100644 --- a/tests/__init__.py +++ b/tests/__init__.py @@ -149,6 +149,14 @@ def make_xml_comparable(bom: str) -> str: ' \\1\n' ' ', bom) + if sys.version_info < (3, 13): + # py3.13 finally fixed a bug in the XML writer: https://github.com/python/cpython/issues/81555 + # no longer escape double-quotes(") in text/non-attribute. + # here is a backwards-compat mode, so we have consistent tests. + bom = re_sub( + r'>[^<]*"[^<]*<', + lambda s: s[0].replace('"', '"'), + bom) return bom diff --git a/tests/_data/infiles/environment/normalize-packagename/init.py b/tests/_data/infiles/environment/normalize-packagename/init.py index da24bf0ee..65d1e3952 100644 --- a/tests/_data/infiles/environment/normalize-packagename/init.py +++ b/tests/_data/infiles/environment/normalize-packagename/init.py @@ -63,8 +63,10 @@ def main() -> None: ).create(env_dir) pip_install( + '--no-deps', # the clib dep cannot be installed consistently... # https://packaging.python.org/en/latest/specifications/name-normalization/#name-normalization 'ruamel-YAML[jinja2]', # actually "ruamel.yaml", normalizes to "ruamel-yaml" + 'ruamel-Yaml.Jinja2', # actually "ruamel.yaml.jinja2", normalizes to "ruamel-yaml-jinja2" ) diff --git a/tests/_data/infiles/environment/with-extras/init.py b/tests/_data/infiles/environment/with-extras/init.py index 307a3b352..e11828149 100644 --- a/tests/_data/infiles/environment/with-extras/init.py +++ b/tests/_data/infiles/environment/with-extras/init.py @@ -68,6 +68,7 @@ def main() -> None: 'importlib-resources>=1.4.0', 'pkgutil-resolve-name>=1.3.10', 'zipp>=3.1.0', + 'jsonschema-specifications==2023.03.6', ) diff --git a/tests/_data/infiles/environment/with-extras/pinning.txt b/tests/_data/infiles/environment/with-extras/pinning.txt index ddddf3c32..a62106ae4 100644 --- a/tests/_data/infiles/environment/with-extras/pinning.txt +++ b/tests/_data/infiles/environment/with-extras/pinning.txt @@ -1,28 +1,28 @@ arrow==1.3.0 -attrs==23.1.0 +attrs==24.2.0 boolean.py==4.0 -cyclonedx-python-lib==6.0.0 +cyclonedx-python-lib==8.2.0 defusedxml==0.7.1 fqdn==1.5.1 -idna==3.6 -importlib-resources==6.1.1 +idna==3.10 +importlib_resources==6.4.5 isoduration==20.11.0 -jsonpointer==2.4 -jsonschema==4.20.0 -jsonschema-specifications==2023.11.2 -license-expression==30.2.0 -lxml==4.9.4 -packageurl-python==0.13.1 +jsonpointer==3.0.0 +jsonschema==4.23.0 +jsonschema-specifications==2023.3.6 +license-expression==30.3.1 +lxml==5.3.0 +packageurl-python==0.16.0 pkgutil_resolve_name==1.3.10 -py-serializable==0.16.0 -python-dateutil==2.8.2 -referencing==0.32.0 +py-serializable==1.1.2 +python-dateutil==2.9.0.post0 +referencing==0.35.1 rfc3339-validator==0.1.4 rfc3987==1.3.8 -rpds-py==0.15.2 +rpds-py==0.20.0 six==1.16.0 sortedcontainers==2.4.0 -types-python-dateutil==2.8.19.14 +types-python-dateutil==2.9.0.20241003 uri-template==1.3.0 -webcolors==1.13 -zipp==3.17.0 +webcolors==24.8.0 +zipp==3.20.2 diff --git a/tests/_data/infiles/environment/with-license-pep639/pinning.txt b/tests/_data/infiles/environment/with-license-pep639/pinning.txt index ed4417d90..7ae776b3b 100644 --- a/tests/_data/infiles/environment/with-license-pep639/pinning.txt +++ b/tests/_data/infiles/environment/with-license-pep639/pinning.txt @@ -2,4 +2,4 @@ attrs==23.2.0 boolean.py==4.0 jsonpointer==2.4 license-expression==30.3.0 -lxml==5.2.2 +lxml==5.3.0 diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.0.xml.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.0.xml.bin index c9d3c8c8e..30926376e 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.0.xml.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.0.xml.bin @@ -31,9 +31,9 @@ lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 false diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.1.xml.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.1.xml.bin index f8c3dc347..95b3c3910 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.1.xml.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.1.xml.bin @@ -16,7 +16,7 @@ Copyright (c) 2015 Hynek Schlawack and the attrs contributors Permission is hereby granted, free of charge, to any person obtaining a copy -of this software and associated documentation files (the "Software"), to deal +of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is @@ -25,7 +25,7 @@ furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. -THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER @@ -124,7 +124,7 @@ next * API changes * Add new sort argument to simplify() to optionally not sort when simplifying - expressions (e.g. not applying "commutativity"). Thank you to Steven Esser + expressions (e.g. not applying "commutativity"). Thank you to Steven Esser @majurg for this * Add new argument to tokenizer to optionally accept extra characters in symbol tokens. Thank you to @carpie for this @@ -172,11 +172,11 @@ next * #40 and #50 Expression.subs() now takes 'default' thanks to @kronuz * #45 simplify=False is now the default for parse and related functions or methods. - * #40 Use "&" and "|" as default operators + * #40 Use "&" and "|" as default operators * Bug fixes - * #60 Fix bug for "a or b c" which is not a valid expression + * #60 Fix bug for "a or b c" which is not a valid expression * #58 Fix math formula display in docs * Improve handling of parse errors @@ -215,7 +215,7 @@ list of conditions and the following disclaimer. this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. -THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND +THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR @@ -232,7 +232,7 @@ SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. boolean.py ========== -"boolean.py" is a small library implementing a boolean algebra. It +"boolean.py" is a small library implementing a boolean algebra. It defines two base elements, TRUE and FALSE, and a Symbol class that can take on one of these two values. Calculations are done in terms of AND, OR and NOT - other compositions like XOR and NAND are not implemented @@ -656,14 +656,14 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html # Visit https://aboutcode.org and https://github.com/nexB/license-expression # for support and download. # -# Licensed under the Apache License, Version 2.0 (the "License"); +# Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, +# distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. @@ -680,38 +680,38 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 1. Definitions. - "License" shall mean the terms and conditions for use, reproduction, + "License" shall mean the terms and conditions for use, reproduction, and distribution as defined by Sections 1 through 9 of this document. - "Licensor" shall mean the copyright owner or entity authorized by + "Licensor" shall mean the copyright owner or entity authorized by the copyright owner that is granting the License. - "Legal Entity" shall mean the union of the acting entity and all + "Legal Entity" shall mean the union of the acting entity and all other entities that control, are controlled by, or are under common control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the + "control" means (i) the power, direct or indirect, to cause the direction or management of such entity, whether by contract or otherwise, or (ii) ownership of fifty percent (50%) or more of the outstanding shares, or (iii) beneficial ownership of such entity. - "You" (or "Your") shall mean an individual or Legal Entity + "You" (or "Your") shall mean an individual or Legal Entity exercising permissions granted by this License. - "Source" form shall mean the preferred form for making modifications, + "Source" form shall mean the preferred form for making modifications, including but not limited to software source code, documentation source, and configuration files. - "Object" form shall mean any form resulting from mechanical + "Object" form shall mean any form resulting from mechanical transformation or translation of a Source form, including but not limited to compiled object code, generated documentation, and conversions to other media types. - "Work" shall mean the work of authorship, whether in Source or + "Work" shall mean the work of authorship, whether in Source or Object form, made available under the License, as indicated by a copyright notice that is included in or attached to the work (an example is provided in the Appendix below). - "Derivative Works" shall mean any work, whether in Source or Object + "Derivative Works" shall mean any work, whether in Source or Object form, that is based on (or derived from) the Work and for which the editorial revisions, annotations, elaborations, or other modifications represent, as a whole, an original work of authorship. For the purposes @@ -719,21 +719,21 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html separable from, or merely link (or bind by name) to the interfaces of, the Work and Derivative Works thereof. - "Contribution" shall mean any work of authorship, including + "Contribution" shall mean any work of authorship, including the original version of the Work and any modifications or additions to that Work or Derivative Works thereof, that is intentionally submitted to Licensor for inclusion in the Work by the copyright owner or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" + the copyright owner. For the purposes of this definition, "submitted" means any form of electronic, verbal, or written communication sent to the Licensor or its representatives, including but not limited to communication on electronic mailing lists, source code control systems, and issue tracking systems that are managed by, or on behalf of, the Licensor for the purpose of discussing and improving the Work, but excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." + designated in writing by the copyright owner as "Not a Contribution." - "Contributor" shall mean Licensor and any individual or Legal Entity + "Contributor" shall mean Licensor and any individual or Legal Entity on behalf of whom a Contribution has been received by Licensor and subsequently incorporated within the Work. @@ -777,7 +777,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html excluding those notices that do not pertain to any part of the Derivative Works; and - (d) If the Work includes a "NOTICE" text file as part of its + (d) If the Work includes a "NOTICE" text file as part of its distribution, then any Derivative Works that You distribute must include a readable copy of the attribution notices contained within such NOTICE file, excluding those notices that do not @@ -816,7 +816,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 7. Disclaimer of Warranty. Unless required by applicable law or agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, + Contributor provides its Contributions) on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied, including, without limitation, any warranties or conditions of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A @@ -852,24 +852,24 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html APPENDIX: How to apply the Apache License to your work. To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" + boilerplate notice, with the fields enclosed by brackets "[]" replaced with your own identifying information. (Don't include the brackets!) The text should be enclosed in the appropriate comment syntax for the file format. We also recommend that a file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier + same "printed page" as the copyright notice for easier identification within third-party archives. Copyright [yyyy] [name of copyright owner] - Licensed under the Apache License, Version 2.0 (the "License"); + Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, + distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. @@ -884,9 +884,9 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -916,7 +916,7 @@ met: without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS -"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT +"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL INFRAE OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, @@ -943,7 +943,7 @@ under the BSD license (see doc/licenses/BSD.txt). test.py, the test-runner script, is GPL and copyright Shuttleworth Foundation. See doc/licenses/GPL.txt. It is believed the unchanged inclusion of test.py to run the unit test suite falls under the -"aggregation" clause of the GPL and thus does not affect the license +"aggregation" clause of the GPL and thus does not affect the license of the rest of the package. The isoschematron implementation uses several XSL and RelaxNG resources: @@ -962,7 +962,7 @@ The isoschematron implementation uses several XSL and RelaxNG resources: - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.2.json.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.2.json.bin index 94975105c..9d9b17230 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.2.json.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.2.json.bin @@ -217,7 +217,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -262,9 +262,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -284,7 +284,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -292,7 +292,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.2.xml.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.2.xml.bin index 1d5886ddb..e5b167dde 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.2.xml.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.2.xml.bin @@ -35,7 +35,7 @@ Copyright (c) 2015 Hynek Schlawack and the attrs contributors Permission is hereby granted, free of charge, to any person obtaining a copy -of this software and associated documentation files (the "Software"), to deal +of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is @@ -44,7 +44,7 @@ furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. -THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER @@ -143,7 +143,7 @@ next * API changes * Add new sort argument to simplify() to optionally not sort when simplifying - expressions (e.g. not applying "commutativity"). Thank you to Steven Esser + expressions (e.g. not applying "commutativity"). Thank you to Steven Esser @majurg for this * Add new argument to tokenizer to optionally accept extra characters in symbol tokens. Thank you to @carpie for this @@ -191,11 +191,11 @@ next * #40 and #50 Expression.subs() now takes 'default' thanks to @kronuz * #45 simplify=False is now the default for parse and related functions or methods. - * #40 Use "&" and "|" as default operators + * #40 Use "&" and "|" as default operators * Bug fixes - * #60 Fix bug for "a or b c" which is not a valid expression + * #60 Fix bug for "a or b c" which is not a valid expression * #58 Fix math formula display in docs * Improve handling of parse errors @@ -234,7 +234,7 @@ list of conditions and the following disclaimer. this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. -THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND +THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR @@ -251,7 +251,7 @@ SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. boolean.py ========== -"boolean.py" is a small library implementing a boolean algebra. It +"boolean.py" is a small library implementing a boolean algebra. It defines two base elements, TRUE and FALSE, and a Symbol class that can take on one of these two values. Calculations are done in terms of AND, OR and NOT - other compositions like XOR and NAND are not implemented @@ -675,14 +675,14 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html # Visit https://aboutcode.org and https://github.com/nexB/license-expression # for support and download. # -# Licensed under the Apache License, Version 2.0 (the "License"); +# Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, +# distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. @@ -699,38 +699,38 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 1. Definitions. - "License" shall mean the terms and conditions for use, reproduction, + "License" shall mean the terms and conditions for use, reproduction, and distribution as defined by Sections 1 through 9 of this document. - "Licensor" shall mean the copyright owner or entity authorized by + "Licensor" shall mean the copyright owner or entity authorized by the copyright owner that is granting the License. - "Legal Entity" shall mean the union of the acting entity and all + "Legal Entity" shall mean the union of the acting entity and all other entities that control, are controlled by, or are under common control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the + "control" means (i) the power, direct or indirect, to cause the direction or management of such entity, whether by contract or otherwise, or (ii) ownership of fifty percent (50%) or more of the outstanding shares, or (iii) beneficial ownership of such entity. - "You" (or "Your") shall mean an individual or Legal Entity + "You" (or "Your") shall mean an individual or Legal Entity exercising permissions granted by this License. - "Source" form shall mean the preferred form for making modifications, + "Source" form shall mean the preferred form for making modifications, including but not limited to software source code, documentation source, and configuration files. - "Object" form shall mean any form resulting from mechanical + "Object" form shall mean any form resulting from mechanical transformation or translation of a Source form, including but not limited to compiled object code, generated documentation, and conversions to other media types. - "Work" shall mean the work of authorship, whether in Source or + "Work" shall mean the work of authorship, whether in Source or Object form, made available under the License, as indicated by a copyright notice that is included in or attached to the work (an example is provided in the Appendix below). - "Derivative Works" shall mean any work, whether in Source or Object + "Derivative Works" shall mean any work, whether in Source or Object form, that is based on (or derived from) the Work and for which the editorial revisions, annotations, elaborations, or other modifications represent, as a whole, an original work of authorship. For the purposes @@ -738,21 +738,21 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html separable from, or merely link (or bind by name) to the interfaces of, the Work and Derivative Works thereof. - "Contribution" shall mean any work of authorship, including + "Contribution" shall mean any work of authorship, including the original version of the Work and any modifications or additions to that Work or Derivative Works thereof, that is intentionally submitted to Licensor for inclusion in the Work by the copyright owner or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" + the copyright owner. For the purposes of this definition, "submitted" means any form of electronic, verbal, or written communication sent to the Licensor or its representatives, including but not limited to communication on electronic mailing lists, source code control systems, and issue tracking systems that are managed by, or on behalf of, the Licensor for the purpose of discussing and improving the Work, but excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." + designated in writing by the copyright owner as "Not a Contribution." - "Contributor" shall mean Licensor and any individual or Legal Entity + "Contributor" shall mean Licensor and any individual or Legal Entity on behalf of whom a Contribution has been received by Licensor and subsequently incorporated within the Work. @@ -796,7 +796,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html excluding those notices that do not pertain to any part of the Derivative Works; and - (d) If the Work includes a "NOTICE" text file as part of its + (d) If the Work includes a "NOTICE" text file as part of its distribution, then any Derivative Works that You distribute must include a readable copy of the attribution notices contained within such NOTICE file, excluding those notices that do not @@ -835,7 +835,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 7. Disclaimer of Warranty. Unless required by applicable law or agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, + Contributor provides its Contributions) on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied, including, without limitation, any warranties or conditions of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A @@ -871,24 +871,24 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html APPENDIX: How to apply the Apache License to your work. To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" + boilerplate notice, with the fields enclosed by brackets "[]" replaced with your own identifying information. (Don't include the brackets!) The text should be enclosed in the appropriate comment syntax for the file format. We also recommend that a file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier + same "printed page" as the copyright notice for easier identification within third-party archives. Copyright [yyyy] [name of copyright owner] - Licensed under the Apache License, Version 2.0 (the "License"); + Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, + distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. @@ -903,9 +903,9 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -935,7 +935,7 @@ met: without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS -"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT +"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL INFRAE OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, @@ -962,7 +962,7 @@ under the BSD license (see doc/licenses/BSD.txt). test.py, the test-runner script, is GPL and copyright Shuttleworth Foundation. See doc/licenses/GPL.txt. It is believed the unchanged inclusion of test.py to run the unit test suite falls under the -"aggregation" clause of the GPL and thus does not affect the license +"aggregation" clause of the GPL and thus does not affect the license of the rest of the package. The isoschematron implementation uses several XSL and RelaxNG resources: @@ -981,7 +981,7 @@ The isoschematron implementation uses several XSL and RelaxNG resources: - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -1001,13 +1001,13 @@ The isoschematron implementation uses several XSL and RelaxNG resources: - + - + diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.3.json.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.3.json.bin index fc0328e7c..230dffdf8 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.3.json.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.3.json.bin @@ -217,7 +217,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -262,9 +262,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -284,7 +284,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -292,7 +292,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.3.xml.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.3.xml.bin index fb78a50f1..8a3317e0c 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.3.xml.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.3.xml.bin @@ -38,7 +38,7 @@ Copyright (c) 2015 Hynek Schlawack and the attrs contributors Permission is hereby granted, free of charge, to any person obtaining a copy -of this software and associated documentation files (the "Software"), to deal +of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is @@ -47,7 +47,7 @@ furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. -THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER @@ -146,7 +146,7 @@ next * API changes * Add new sort argument to simplify() to optionally not sort when simplifying - expressions (e.g. not applying "commutativity"). Thank you to Steven Esser + expressions (e.g. not applying "commutativity"). Thank you to Steven Esser @majurg for this * Add new argument to tokenizer to optionally accept extra characters in symbol tokens. Thank you to @carpie for this @@ -194,11 +194,11 @@ next * #40 and #50 Expression.subs() now takes 'default' thanks to @kronuz * #45 simplify=False is now the default for parse and related functions or methods. - * #40 Use "&" and "|" as default operators + * #40 Use "&" and "|" as default operators * Bug fixes - * #60 Fix bug for "a or b c" which is not a valid expression + * #60 Fix bug for "a or b c" which is not a valid expression * #58 Fix math formula display in docs * Improve handling of parse errors @@ -237,7 +237,7 @@ list of conditions and the following disclaimer. this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. -THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND +THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR @@ -254,7 +254,7 @@ SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. boolean.py ========== -"boolean.py" is a small library implementing a boolean algebra. It +"boolean.py" is a small library implementing a boolean algebra. It defines two base elements, TRUE and FALSE, and a Symbol class that can take on one of these two values. Calculations are done in terms of AND, OR and NOT - other compositions like XOR and NAND are not implemented @@ -678,14 +678,14 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html # Visit https://aboutcode.org and https://github.com/nexB/license-expression # for support and download. # -# Licensed under the Apache License, Version 2.0 (the "License"); +# Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, +# distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. @@ -702,38 +702,38 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 1. Definitions. - "License" shall mean the terms and conditions for use, reproduction, + "License" shall mean the terms and conditions for use, reproduction, and distribution as defined by Sections 1 through 9 of this document. - "Licensor" shall mean the copyright owner or entity authorized by + "Licensor" shall mean the copyright owner or entity authorized by the copyright owner that is granting the License. - "Legal Entity" shall mean the union of the acting entity and all + "Legal Entity" shall mean the union of the acting entity and all other entities that control, are controlled by, or are under common control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the + "control" means (i) the power, direct or indirect, to cause the direction or management of such entity, whether by contract or otherwise, or (ii) ownership of fifty percent (50%) or more of the outstanding shares, or (iii) beneficial ownership of such entity. - "You" (or "Your") shall mean an individual or Legal Entity + "You" (or "Your") shall mean an individual or Legal Entity exercising permissions granted by this License. - "Source" form shall mean the preferred form for making modifications, + "Source" form shall mean the preferred form for making modifications, including but not limited to software source code, documentation source, and configuration files. - "Object" form shall mean any form resulting from mechanical + "Object" form shall mean any form resulting from mechanical transformation or translation of a Source form, including but not limited to compiled object code, generated documentation, and conversions to other media types. - "Work" shall mean the work of authorship, whether in Source or + "Work" shall mean the work of authorship, whether in Source or Object form, made available under the License, as indicated by a copyright notice that is included in or attached to the work (an example is provided in the Appendix below). - "Derivative Works" shall mean any work, whether in Source or Object + "Derivative Works" shall mean any work, whether in Source or Object form, that is based on (or derived from) the Work and for which the editorial revisions, annotations, elaborations, or other modifications represent, as a whole, an original work of authorship. For the purposes @@ -741,21 +741,21 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html separable from, or merely link (or bind by name) to the interfaces of, the Work and Derivative Works thereof. - "Contribution" shall mean any work of authorship, including + "Contribution" shall mean any work of authorship, including the original version of the Work and any modifications or additions to that Work or Derivative Works thereof, that is intentionally submitted to Licensor for inclusion in the Work by the copyright owner or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" + the copyright owner. For the purposes of this definition, "submitted" means any form of electronic, verbal, or written communication sent to the Licensor or its representatives, including but not limited to communication on electronic mailing lists, source code control systems, and issue tracking systems that are managed by, or on behalf of, the Licensor for the purpose of discussing and improving the Work, but excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." + designated in writing by the copyright owner as "Not a Contribution." - "Contributor" shall mean Licensor and any individual or Legal Entity + "Contributor" shall mean Licensor and any individual or Legal Entity on behalf of whom a Contribution has been received by Licensor and subsequently incorporated within the Work. @@ -799,7 +799,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html excluding those notices that do not pertain to any part of the Derivative Works; and - (d) If the Work includes a "NOTICE" text file as part of its + (d) If the Work includes a "NOTICE" text file as part of its distribution, then any Derivative Works that You distribute must include a readable copy of the attribution notices contained within such NOTICE file, excluding those notices that do not @@ -838,7 +838,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 7. Disclaimer of Warranty. Unless required by applicable law or agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, + Contributor provides its Contributions) on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied, including, without limitation, any warranties or conditions of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A @@ -874,24 +874,24 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html APPENDIX: How to apply the Apache License to your work. To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" + boilerplate notice, with the fields enclosed by brackets "[]" replaced with your own identifying information. (Don't include the brackets!) The text should be enclosed in the appropriate comment syntax for the file format. We also recommend that a file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier + same "printed page" as the copyright notice for easier identification within third-party archives. Copyright [yyyy] [name of copyright owner] - Licensed under the Apache License, Version 2.0 (the "License"); + Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, + distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. @@ -906,9 +906,9 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -938,7 +938,7 @@ met: without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS -"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT +"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL INFRAE OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, @@ -965,7 +965,7 @@ under the BSD license (see doc/licenses/BSD.txt). test.py, the test-runner script, is GPL and copyright Shuttleworth Foundation. See doc/licenses/GPL.txt. It is believed the unchanged inclusion of test.py to run the unit test suite falls under the -"aggregation" clause of the GPL and thus does not affect the license +"aggregation" clause of the GPL and thus does not affect the license of the rest of the package. The isoschematron implementation uses several XSL and RelaxNG resources: @@ -984,7 +984,7 @@ The isoschematron implementation uses several XSL and RelaxNG resources: - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -1004,13 +1004,13 @@ The isoschematron implementation uses several XSL and RelaxNG resources: - + - + diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.4.json.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.4.json.bin index 2ad474f7b..f0d6d795c 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.4.json.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.4.json.bin @@ -217,7 +217,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -262,9 +262,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -284,7 +284,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -292,7 +292,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.4.xml.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.4.xml.bin index 621aa1078..d662a2e91 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.4.xml.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.4.xml.bin @@ -65,7 +65,7 @@ Copyright (c) 2015 Hynek Schlawack and the attrs contributors Permission is hereby granted, free of charge, to any person obtaining a copy -of this software and associated documentation files (the "Software"), to deal +of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is @@ -74,7 +74,7 @@ furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. -THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER @@ -173,7 +173,7 @@ next * API changes * Add new sort argument to simplify() to optionally not sort when simplifying - expressions (e.g. not applying "commutativity"). Thank you to Steven Esser + expressions (e.g. not applying "commutativity"). Thank you to Steven Esser @majurg for this * Add new argument to tokenizer to optionally accept extra characters in symbol tokens. Thank you to @carpie for this @@ -221,11 +221,11 @@ next * #40 and #50 Expression.subs() now takes 'default' thanks to @kronuz * #45 simplify=False is now the default for parse and related functions or methods. - * #40 Use "&" and "|" as default operators + * #40 Use "&" and "|" as default operators * Bug fixes - * #60 Fix bug for "a or b c" which is not a valid expression + * #60 Fix bug for "a or b c" which is not a valid expression * #58 Fix math formula display in docs * Improve handling of parse errors @@ -264,7 +264,7 @@ list of conditions and the following disclaimer. this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. -THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND +THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR @@ -281,7 +281,7 @@ SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. boolean.py ========== -"boolean.py" is a small library implementing a boolean algebra. It +"boolean.py" is a small library implementing a boolean algebra. It defines two base elements, TRUE and FALSE, and a Symbol class that can take on one of these two values. Calculations are done in terms of AND, OR and NOT - other compositions like XOR and NAND are not implemented @@ -705,14 +705,14 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html # Visit https://aboutcode.org and https://github.com/nexB/license-expression # for support and download. # -# Licensed under the Apache License, Version 2.0 (the "License"); +# Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, +# distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. @@ -729,38 +729,38 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 1. Definitions. - "License" shall mean the terms and conditions for use, reproduction, + "License" shall mean the terms and conditions for use, reproduction, and distribution as defined by Sections 1 through 9 of this document. - "Licensor" shall mean the copyright owner or entity authorized by + "Licensor" shall mean the copyright owner or entity authorized by the copyright owner that is granting the License. - "Legal Entity" shall mean the union of the acting entity and all + "Legal Entity" shall mean the union of the acting entity and all other entities that control, are controlled by, or are under common control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the + "control" means (i) the power, direct or indirect, to cause the direction or management of such entity, whether by contract or otherwise, or (ii) ownership of fifty percent (50%) or more of the outstanding shares, or (iii) beneficial ownership of such entity. - "You" (or "Your") shall mean an individual or Legal Entity + "You" (or "Your") shall mean an individual or Legal Entity exercising permissions granted by this License. - "Source" form shall mean the preferred form for making modifications, + "Source" form shall mean the preferred form for making modifications, including but not limited to software source code, documentation source, and configuration files. - "Object" form shall mean any form resulting from mechanical + "Object" form shall mean any form resulting from mechanical transformation or translation of a Source form, including but not limited to compiled object code, generated documentation, and conversions to other media types. - "Work" shall mean the work of authorship, whether in Source or + "Work" shall mean the work of authorship, whether in Source or Object form, made available under the License, as indicated by a copyright notice that is included in or attached to the work (an example is provided in the Appendix below). - "Derivative Works" shall mean any work, whether in Source or Object + "Derivative Works" shall mean any work, whether in Source or Object form, that is based on (or derived from) the Work and for which the editorial revisions, annotations, elaborations, or other modifications represent, as a whole, an original work of authorship. For the purposes @@ -768,21 +768,21 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html separable from, or merely link (or bind by name) to the interfaces of, the Work and Derivative Works thereof. - "Contribution" shall mean any work of authorship, including + "Contribution" shall mean any work of authorship, including the original version of the Work and any modifications or additions to that Work or Derivative Works thereof, that is intentionally submitted to Licensor for inclusion in the Work by the copyright owner or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" + the copyright owner. For the purposes of this definition, "submitted" means any form of electronic, verbal, or written communication sent to the Licensor or its representatives, including but not limited to communication on electronic mailing lists, source code control systems, and issue tracking systems that are managed by, or on behalf of, the Licensor for the purpose of discussing and improving the Work, but excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." + designated in writing by the copyright owner as "Not a Contribution." - "Contributor" shall mean Licensor and any individual or Legal Entity + "Contributor" shall mean Licensor and any individual or Legal Entity on behalf of whom a Contribution has been received by Licensor and subsequently incorporated within the Work. @@ -826,7 +826,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html excluding those notices that do not pertain to any part of the Derivative Works; and - (d) If the Work includes a "NOTICE" text file as part of its + (d) If the Work includes a "NOTICE" text file as part of its distribution, then any Derivative Works that You distribute must include a readable copy of the attribution notices contained within such NOTICE file, excluding those notices that do not @@ -865,7 +865,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 7. Disclaimer of Warranty. Unless required by applicable law or agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, + Contributor provides its Contributions) on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied, including, without limitation, any warranties or conditions of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A @@ -901,24 +901,24 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html APPENDIX: How to apply the Apache License to your work. To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" + boilerplate notice, with the fields enclosed by brackets "[]" replaced with your own identifying information. (Don't include the brackets!) The text should be enclosed in the appropriate comment syntax for the file format. We also recommend that a file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier + same "printed page" as the copyright notice for easier identification within third-party archives. Copyright [yyyy] [name of copyright owner] - Licensed under the Apache License, Version 2.0 (the "License"); + Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, + distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. @@ -933,9 +933,9 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -965,7 +965,7 @@ met: without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS -"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT +"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL INFRAE OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, @@ -992,7 +992,7 @@ under the BSD license (see doc/licenses/BSD.txt). test.py, the test-runner script, is GPL and copyright Shuttleworth Foundation. See doc/licenses/GPL.txt. It is believed the unchanged inclusion of test.py to run the unit test suite falls under the -"aggregation" clause of the GPL and thus does not affect the license +"aggregation" clause of the GPL and thus does not affect the license of the rest of the package. The isoschematron implementation uses several XSL and RelaxNG resources: @@ -1011,7 +1011,7 @@ The isoschematron implementation uses several XSL and RelaxNG resources: - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -1031,13 +1031,13 @@ The isoschematron implementation uses several XSL and RelaxNG resources: - + - + diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.5.json.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.5.json.bin index 26d54ed5c..7a476be58 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.5.json.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.5.json.bin @@ -217,7 +217,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -262,9 +262,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -284,7 +284,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -292,7 +292,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.5.xml.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.5.xml.bin index a1d6b48f7..aa4f57bd7 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.5.xml.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.5.xml.bin @@ -75,7 +75,7 @@ Copyright (c) 2015 Hynek Schlawack and the attrs contributors Permission is hereby granted, free of charge, to any person obtaining a copy -of this software and associated documentation files (the "Software"), to deal +of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is @@ -84,7 +84,7 @@ furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. -THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER @@ -183,7 +183,7 @@ next * API changes * Add new sort argument to simplify() to optionally not sort when simplifying - expressions (e.g. not applying "commutativity"). Thank you to Steven Esser + expressions (e.g. not applying "commutativity"). Thank you to Steven Esser @majurg for this * Add new argument to tokenizer to optionally accept extra characters in symbol tokens. Thank you to @carpie for this @@ -231,11 +231,11 @@ next * #40 and #50 Expression.subs() now takes 'default' thanks to @kronuz * #45 simplify=False is now the default for parse and related functions or methods. - * #40 Use "&" and "|" as default operators + * #40 Use "&" and "|" as default operators * Bug fixes - * #60 Fix bug for "a or b c" which is not a valid expression + * #60 Fix bug for "a or b c" which is not a valid expression * #58 Fix math formula display in docs * Improve handling of parse errors @@ -274,7 +274,7 @@ list of conditions and the following disclaimer. this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. -THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND +THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR @@ -291,7 +291,7 @@ SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. boolean.py ========== -"boolean.py" is a small library implementing a boolean algebra. It +"boolean.py" is a small library implementing a boolean algebra. It defines two base elements, TRUE and FALSE, and a Symbol class that can take on one of these two values. Calculations are done in terms of AND, OR and NOT - other compositions like XOR and NAND are not implemented @@ -715,14 +715,14 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html # Visit https://aboutcode.org and https://github.com/nexB/license-expression # for support and download. # -# Licensed under the Apache License, Version 2.0 (the "License"); +# Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, +# distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. @@ -739,38 +739,38 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 1. Definitions. - "License" shall mean the terms and conditions for use, reproduction, + "License" shall mean the terms and conditions for use, reproduction, and distribution as defined by Sections 1 through 9 of this document. - "Licensor" shall mean the copyright owner or entity authorized by + "Licensor" shall mean the copyright owner or entity authorized by the copyright owner that is granting the License. - "Legal Entity" shall mean the union of the acting entity and all + "Legal Entity" shall mean the union of the acting entity and all other entities that control, are controlled by, or are under common control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the + "control" means (i) the power, direct or indirect, to cause the direction or management of such entity, whether by contract or otherwise, or (ii) ownership of fifty percent (50%) or more of the outstanding shares, or (iii) beneficial ownership of such entity. - "You" (or "Your") shall mean an individual or Legal Entity + "You" (or "Your") shall mean an individual or Legal Entity exercising permissions granted by this License. - "Source" form shall mean the preferred form for making modifications, + "Source" form shall mean the preferred form for making modifications, including but not limited to software source code, documentation source, and configuration files. - "Object" form shall mean any form resulting from mechanical + "Object" form shall mean any form resulting from mechanical transformation or translation of a Source form, including but not limited to compiled object code, generated documentation, and conversions to other media types. - "Work" shall mean the work of authorship, whether in Source or + "Work" shall mean the work of authorship, whether in Source or Object form, made available under the License, as indicated by a copyright notice that is included in or attached to the work (an example is provided in the Appendix below). - "Derivative Works" shall mean any work, whether in Source or Object + "Derivative Works" shall mean any work, whether in Source or Object form, that is based on (or derived from) the Work and for which the editorial revisions, annotations, elaborations, or other modifications represent, as a whole, an original work of authorship. For the purposes @@ -778,21 +778,21 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html separable from, or merely link (or bind by name) to the interfaces of, the Work and Derivative Works thereof. - "Contribution" shall mean any work of authorship, including + "Contribution" shall mean any work of authorship, including the original version of the Work and any modifications or additions to that Work or Derivative Works thereof, that is intentionally submitted to Licensor for inclusion in the Work by the copyright owner or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" + the copyright owner. For the purposes of this definition, "submitted" means any form of electronic, verbal, or written communication sent to the Licensor or its representatives, including but not limited to communication on electronic mailing lists, source code control systems, and issue tracking systems that are managed by, or on behalf of, the Licensor for the purpose of discussing and improving the Work, but excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." + designated in writing by the copyright owner as "Not a Contribution." - "Contributor" shall mean Licensor and any individual or Legal Entity + "Contributor" shall mean Licensor and any individual or Legal Entity on behalf of whom a Contribution has been received by Licensor and subsequently incorporated within the Work. @@ -836,7 +836,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html excluding those notices that do not pertain to any part of the Derivative Works; and - (d) If the Work includes a "NOTICE" text file as part of its + (d) If the Work includes a "NOTICE" text file as part of its distribution, then any Derivative Works that You distribute must include a readable copy of the attribution notices contained within such NOTICE file, excluding those notices that do not @@ -875,7 +875,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 7. Disclaimer of Warranty. Unless required by applicable law or agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, + Contributor provides its Contributions) on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied, including, without limitation, any warranties or conditions of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A @@ -911,24 +911,24 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html APPENDIX: How to apply the Apache License to your work. To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" + boilerplate notice, with the fields enclosed by brackets "[]" replaced with your own identifying information. (Don't include the brackets!) The text should be enclosed in the appropriate comment syntax for the file format. We also recommend that a file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier + same "printed page" as the copyright notice for easier identification within third-party archives. Copyright [yyyy] [name of copyright owner] - Licensed under the Apache License, Version 2.0 (the "License"); + Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, + distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. @@ -943,9 +943,9 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -975,7 +975,7 @@ met: without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS -"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT +"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL INFRAE OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, @@ -1002,7 +1002,7 @@ under the BSD license (see doc/licenses/BSD.txt). test.py, the test-runner script, is GPL and copyright Shuttleworth Foundation. See doc/licenses/GPL.txt. It is believed the unchanged inclusion of test.py to run the unit test suite falls under the -"aggregation" clause of the GPL and thus does not affect the license +"aggregation" clause of the GPL and thus does not affect the license of the rest of the package. The isoschematron implementation uses several XSL and RelaxNG resources: @@ -1021,7 +1021,7 @@ The isoschematron implementation uses several XSL and RelaxNG resources: - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -1041,13 +1041,13 @@ The isoschematron implementation uses several XSL and RelaxNG resources: - + - + diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.6.json.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.6.json.bin index 194ebe9db..82c263fdf 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.6.json.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.6.json.bin @@ -233,7 +233,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -282,9 +282,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -304,7 +304,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -312,7 +312,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.6.xml.bin b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.6.xml.bin index cf8c9f06f..ea99762c4 100644 --- a/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.6.xml.bin +++ b/tests/_data/snapshots/environment/pep639-texts_with-license-pep639_1.6.xml.bin @@ -75,7 +75,7 @@ Copyright (c) 2015 Hynek Schlawack and the attrs contributors Permission is hereby granted, free of charge, to any person obtaining a copy -of this software and associated documentation files (the "Software"), to deal +of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is @@ -84,7 +84,7 @@ furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. -THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER @@ -183,7 +183,7 @@ next * API changes * Add new sort argument to simplify() to optionally not sort when simplifying - expressions (e.g. not applying "commutativity"). Thank you to Steven Esser + expressions (e.g. not applying "commutativity"). Thank you to Steven Esser @majurg for this * Add new argument to tokenizer to optionally accept extra characters in symbol tokens. Thank you to @carpie for this @@ -231,11 +231,11 @@ next * #40 and #50 Expression.subs() now takes 'default' thanks to @kronuz * #45 simplify=False is now the default for parse and related functions or methods. - * #40 Use "&" and "|" as default operators + * #40 Use "&" and "|" as default operators * Bug fixes - * #60 Fix bug for "a or b c" which is not a valid expression + * #60 Fix bug for "a or b c" which is not a valid expression * #58 Fix math formula display in docs * Improve handling of parse errors @@ -274,7 +274,7 @@ list of conditions and the following disclaimer. this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. -THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND +THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR @@ -291,7 +291,7 @@ SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. boolean.py ========== -"boolean.py" is a small library implementing a boolean algebra. It +"boolean.py" is a small library implementing a boolean algebra. It defines two base elements, TRUE and FALSE, and a Symbol class that can take on one of these two values. Calculations are done in terms of AND, OR and NOT - other compositions like XOR and NAND are not implemented @@ -715,14 +715,14 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html # Visit https://aboutcode.org and https://github.com/nexB/license-expression # for support and download. # -# Licensed under the Apache License, Version 2.0 (the "License"); +# Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software -# distributed under the License is distributed on an "AS IS" BASIS, +# distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. @@ -739,38 +739,38 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 1. Definitions. - "License" shall mean the terms and conditions for use, reproduction, + "License" shall mean the terms and conditions for use, reproduction, and distribution as defined by Sections 1 through 9 of this document. - "Licensor" shall mean the copyright owner or entity authorized by + "Licensor" shall mean the copyright owner or entity authorized by the copyright owner that is granting the License. - "Legal Entity" shall mean the union of the acting entity and all + "Legal Entity" shall mean the union of the acting entity and all other entities that control, are controlled by, or are under common control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the + "control" means (i) the power, direct or indirect, to cause the direction or management of such entity, whether by contract or otherwise, or (ii) ownership of fifty percent (50%) or more of the outstanding shares, or (iii) beneficial ownership of such entity. - "You" (or "Your") shall mean an individual or Legal Entity + "You" (or "Your") shall mean an individual or Legal Entity exercising permissions granted by this License. - "Source" form shall mean the preferred form for making modifications, + "Source" form shall mean the preferred form for making modifications, including but not limited to software source code, documentation source, and configuration files. - "Object" form shall mean any form resulting from mechanical + "Object" form shall mean any form resulting from mechanical transformation or translation of a Source form, including but not limited to compiled object code, generated documentation, and conversions to other media types. - "Work" shall mean the work of authorship, whether in Source or + "Work" shall mean the work of authorship, whether in Source or Object form, made available under the License, as indicated by a copyright notice that is included in or attached to the work (an example is provided in the Appendix below). - "Derivative Works" shall mean any work, whether in Source or Object + "Derivative Works" shall mean any work, whether in Source or Object form, that is based on (or derived from) the Work and for which the editorial revisions, annotations, elaborations, or other modifications represent, as a whole, an original work of authorship. For the purposes @@ -778,21 +778,21 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html separable from, or merely link (or bind by name) to the interfaces of, the Work and Derivative Works thereof. - "Contribution" shall mean any work of authorship, including + "Contribution" shall mean any work of authorship, including the original version of the Work and any modifications or additions to that Work or Derivative Works thereof, that is intentionally submitted to Licensor for inclusion in the Work by the copyright owner or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" + the copyright owner. For the purposes of this definition, "submitted" means any form of electronic, verbal, or written communication sent to the Licensor or its representatives, including but not limited to communication on electronic mailing lists, source code control systems, and issue tracking systems that are managed by, or on behalf of, the Licensor for the purpose of discussing and improving the Work, but excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." + designated in writing by the copyright owner as "Not a Contribution." - "Contributor" shall mean Licensor and any individual or Legal Entity + "Contributor" shall mean Licensor and any individual or Legal Entity on behalf of whom a Contribution has been received by Licensor and subsequently incorporated within the Work. @@ -836,7 +836,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html excluding those notices that do not pertain to any part of the Derivative Works; and - (d) If the Work includes a "NOTICE" text file as part of its + (d) If the Work includes a "NOTICE" text file as part of its distribution, then any Derivative Works that You distribute must include a readable copy of the attribution notices contained within such NOTICE file, excluding those notices that do not @@ -875,7 +875,7 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html 7. Disclaimer of Warranty. Unless required by applicable law or agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, + Contributor provides its Contributions) on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied, including, without limitation, any warranties or conditions of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A @@ -911,24 +911,24 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html APPENDIX: How to apply the Apache License to your work. To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" + boilerplate notice, with the fields enclosed by brackets "[]" replaced with your own identifying information. (Don't include the brackets!) The text should be enclosed in the appropriate comment syntax for the file format. We also recommend that a file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier + same "printed page" as the copyright notice for easier identification within third-party archives. Copyright [yyyy] [name of copyright owner] - Licensed under the Apache License, Version 2.0 (the "License"); + Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, + distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. @@ -943,9 +943,9 @@ https://www.contributor-covenant.org/version/1/4/code-of-conduct.html - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -975,7 +975,7 @@ met: without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS -"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT +"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL INFRAE OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, @@ -1002,7 +1002,7 @@ under the BSD license (see doc/licenses/BSD.txt). test.py, the test-runner script, is GPL and copyright Shuttleworth Foundation. See doc/licenses/GPL.txt. It is believed the unchanged inclusion of test.py to run the unit test suite falls under the -"aggregation" clause of the GPL and thus does not affect the license +"aggregation" clause of the GPL and thus does not affect the license of the rest of the package. The isoschematron implementation uses several XSL and RelaxNG resources: @@ -1021,7 +1021,7 @@ The isoschematron implementation uses several XSL and RelaxNG resources: - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -1041,13 +1041,13 @@ The isoschematron implementation uses several XSL and RelaxNG resources: - + - + diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.0.xml.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.0.xml.bin index c9d3c8c8e..30926376e 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.0.xml.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.0.xml.bin @@ -31,9 +31,9 @@ lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 false diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.1.xml.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.1.xml.bin index d146bbfc6..ad814a1ad 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.1.xml.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.1.xml.bin @@ -89,9 +89,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -101,7 +101,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.2.json.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.2.json.bin index 07ab2198e..2b07c487b 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.2.json.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.2.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.2.xml.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.2.xml.bin index f66944050..1fd52e174 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.2.xml.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.2.xml.bin @@ -108,9 +108,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -120,7 +120,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -140,13 +140,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.3.json.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.3.json.bin index b5fc2710e..d6f567ccb 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.3.json.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.3.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.3.xml.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.3.xml.bin index 7332598ca..2adf6f345 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.3.xml.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.3.xml.bin @@ -111,9 +111,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -123,7 +123,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -143,13 +143,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.4.json.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.4.json.bin index 565f0e8c2..3bc42630e 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.4.json.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.4.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.4.xml.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.4.xml.bin index 61db29c5d..a626ad20b 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.4.xml.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.4.xml.bin @@ -138,9 +138,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -150,7 +150,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -170,13 +170,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.5.json.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.5.json.bin index db5b81a85..d7a420f77 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.5.json.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.5.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.5.xml.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.5.xml.bin index 1e93e3eb1..600ad9579 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.5.xml.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.5.xml.bin @@ -148,9 +148,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -160,7 +160,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -180,13 +180,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.6.json.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.6.json.bin index 4d3832ff5..35f60e13d 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.6.json.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.6.json.bin @@ -123,7 +123,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -152,9 +152,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -174,7 +174,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -182,7 +182,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.6.xml.bin b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.6.xml.bin index 5c97bd7c8..c75ea33b0 100644 --- a/tests/_data/snapshots/environment/pep639_with-license-pep639_1.6.xml.bin +++ b/tests/_data/snapshots/environment/pep639_with-license-pep639_1.6.xml.bin @@ -148,9 +148,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -160,7 +160,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -180,13 +180,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.0.xml.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.0.xml.bin index a493f9396..72cd7c315 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.0.xml.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.0.xml.bin @@ -8,13 +8,6 @@ pkg:pypi/ruamel.yaml@0.18.5 false - - ruamel.yaml.clib - 0.2.8 - C version of reader, parser and emitter for ruamel.yaml derived from libyaml - pkg:pypi/ruamel.yaml.clib@0.2.8 - false - ruamel.yaml.jinja2 0.2.7 diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.1.xml.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.1.xml.bin index 4c33f5173..b93650a85 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.1.xml.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.1.xml.bin @@ -34,23 +34,6 @@ - - ruamel.yaml.clib - 0.2.8 - C version of reader, parser and emitter for ruamel.yaml derived from libyaml - - - MIT - - - pkg:pypi/ruamel.yaml.clib@0.2.8 - - - https://sourceforge.net/p/ruamel-yaml-clib/code/ci/default/tree - from packaging metadata: Home-page - - - ruamel.yaml.jinja2 0.2.7 diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.2.json.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.2.json.bin index 9657d83be..d38fa0af1 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.2.json.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.2.json.bin @@ -46,28 +46,6 @@ "type": "library", "version": "0.18.5" }, - { - "bom-ref": "ruamel.yaml.clib==0.2.8", - "description": "C version of reader, parser and emitter for ruamel.yaml derived from libyaml", - "externalReferences": [ - { - "comment": "from packaging metadata: Home-page", - "type": "website", - "url": "https://sourceforge.net/p/ruamel-yaml-clib/code/ci/default/tree" - } - ], - "licenses": [ - { - "license": { - "id": "MIT" - } - } - ], - "name": "ruamel.yaml.clib", - "purl": "pkg:pypi/ruamel.yaml.clib@0.2.8", - "type": "library", - "version": "0.2.8" - }, { "bom-ref": "ruamel.yaml.jinja2==0.2.7", "description": "jinja2 pre and post-processor to update with YAML", @@ -98,9 +76,6 @@ ], "ref": "root-component" }, - { - "ref": "ruamel.yaml.clib==0.2.8" - }, { "dependsOn": [ "ruamel.yaml==0.18.5" @@ -109,7 +84,6 @@ }, { "dependsOn": [ - "ruamel.yaml.clib==0.2.8", "ruamel.yaml.jinja2==0.2.7" ], "ref": "ruamel.yaml==0.18.5" diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.2.xml.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.2.xml.bin index ce11abd19..dd132f329 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.2.xml.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.2.xml.bin @@ -53,23 +53,6 @@ - - ruamel.yaml.clib - 0.2.8 - C version of reader, parser and emitter for ruamel.yaml derived from libyaml - - - MIT - - - pkg:pypi/ruamel.yaml.clib@0.2.8 - - - https://sourceforge.net/p/ruamel-yaml-clib/code/ci/default/tree - from packaging metadata: Home-page - - - ruamel.yaml.jinja2 0.2.7 @@ -92,12 +75,10 @@ - - diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.3.json.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.3.json.bin index 9ec32cf57..cdc37eb67 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.3.json.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.3.json.bin @@ -52,28 +52,6 @@ "type": "library", "version": "0.18.5" }, - { - "bom-ref": "ruamel.yaml.clib==0.2.8", - "description": "C version of reader, parser and emitter for ruamel.yaml derived from libyaml", - "externalReferences": [ - { - "comment": "from packaging metadata: Home-page", - "type": "website", - "url": "https://sourceforge.net/p/ruamel-yaml-clib/code/ci/default/tree" - } - ], - "licenses": [ - { - "license": { - "id": "MIT" - } - } - ], - "name": "ruamel.yaml.clib", - "purl": "pkg:pypi/ruamel.yaml.clib@0.2.8", - "type": "library", - "version": "0.2.8" - }, { "bom-ref": "ruamel.yaml.jinja2==0.2.7", "description": "jinja2 pre and post-processor to update with YAML", @@ -104,9 +82,6 @@ ], "ref": "root-component" }, - { - "ref": "ruamel.yaml.clib==0.2.8" - }, { "dependsOn": [ "ruamel.yaml==0.18.5" @@ -115,7 +90,6 @@ }, { "dependsOn": [ - "ruamel.yaml.clib==0.2.8", "ruamel.yaml.jinja2==0.2.7" ], "ref": "ruamel.yaml==0.18.5" diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.3.xml.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.3.xml.bin index dddb81435..42e56d305 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.3.xml.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.3.xml.bin @@ -59,23 +59,6 @@ jinja2 - - ruamel.yaml.clib - 0.2.8 - C version of reader, parser and emitter for ruamel.yaml derived from libyaml - - - MIT - - - pkg:pypi/ruamel.yaml.clib@0.2.8 - - - https://sourceforge.net/p/ruamel-yaml-clib/code/ci/default/tree - from packaging metadata: Home-page - - - ruamel.yaml.jinja2 0.2.7 @@ -98,12 +81,10 @@ - - diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.4.json.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.4.json.bin index 40bc62dcf..43250e66c 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.4.json.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.4.json.bin @@ -52,28 +52,6 @@ "type": "library", "version": "0.18.5" }, - { - "bom-ref": "ruamel.yaml.clib==0.2.8", - "description": "C version of reader, parser and emitter for ruamel.yaml derived from libyaml", - "externalReferences": [ - { - "comment": "from packaging metadata: Home-page", - "type": "website", - "url": "https://sourceforge.net/p/ruamel-yaml-clib/code/ci/default/tree" - } - ], - "licenses": [ - { - "license": { - "id": "MIT" - } - } - ], - "name": "ruamel.yaml.clib", - "purl": "pkg:pypi/ruamel.yaml.clib@0.2.8", - "type": "library", - "version": "0.2.8" - }, { "bom-ref": "ruamel.yaml.jinja2==0.2.7", "description": "jinja2 pre and post-processor to update with YAML", @@ -104,9 +82,6 @@ ], "ref": "root-component" }, - { - "ref": "ruamel.yaml.clib==0.2.8" - }, { "dependsOn": [ "ruamel.yaml==0.18.5" @@ -115,7 +90,6 @@ }, { "dependsOn": [ - "ruamel.yaml.clib==0.2.8", "ruamel.yaml.jinja2==0.2.7" ], "ref": "ruamel.yaml==0.18.5" diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.4.xml.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.4.xml.bin index 854dc5c4a..201e0bff7 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.4.xml.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.4.xml.bin @@ -86,23 +86,6 @@ jinja2 - - ruamel.yaml.clib - 0.2.8 - C version of reader, parser and emitter for ruamel.yaml derived from libyaml - - - MIT - - - pkg:pypi/ruamel.yaml.clib@0.2.8 - - - https://sourceforge.net/p/ruamel-yaml-clib/code/ci/default/tree - from packaging metadata: Home-page - - - ruamel.yaml.jinja2 0.2.7 @@ -125,12 +108,10 @@ - - diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.5.json.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.5.json.bin index e547eb15d..e08c89fa1 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.5.json.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.5.json.bin @@ -52,28 +52,6 @@ "type": "library", "version": "0.18.5" }, - { - "bom-ref": "ruamel.yaml.clib==0.2.8", - "description": "C version of reader, parser and emitter for ruamel.yaml derived from libyaml", - "externalReferences": [ - { - "comment": "from packaging metadata: Home-page", - "type": "website", - "url": "https://sourceforge.net/p/ruamel-yaml-clib/code/ci/default/tree" - } - ], - "licenses": [ - { - "license": { - "id": "MIT" - } - } - ], - "name": "ruamel.yaml.clib", - "purl": "pkg:pypi/ruamel.yaml.clib@0.2.8", - "type": "library", - "version": "0.2.8" - }, { "bom-ref": "ruamel.yaml.jinja2==0.2.7", "description": "jinja2 pre and post-processor to update with YAML", @@ -104,9 +82,6 @@ ], "ref": "root-component" }, - { - "ref": "ruamel.yaml.clib==0.2.8" - }, { "dependsOn": [ "ruamel.yaml==0.18.5" @@ -115,7 +90,6 @@ }, { "dependsOn": [ - "ruamel.yaml.clib==0.2.8", "ruamel.yaml.jinja2==0.2.7" ], "ref": "ruamel.yaml==0.18.5" diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.5.xml.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.5.xml.bin index 99d0154da..9820effdd 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.5.xml.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.5.xml.bin @@ -96,23 +96,6 @@ jinja2 - - ruamel.yaml.clib - 0.2.8 - C version of reader, parser and emitter for ruamel.yaml derived from libyaml - - - MIT - - - pkg:pypi/ruamel.yaml.clib@0.2.8 - - - https://sourceforge.net/p/ruamel-yaml-clib/code/ci/default/tree - from packaging metadata: Home-page - - - ruamel.yaml.jinja2 0.2.7 @@ -135,12 +118,10 @@ - - diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.6.json.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.6.json.bin index c36faba62..5b77848a4 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.6.json.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.6.json.bin @@ -54,29 +54,6 @@ "type": "library", "version": "0.18.5" }, - { - "bom-ref": "ruamel.yaml.clib==0.2.8", - "description": "C version of reader, parser and emitter for ruamel.yaml derived from libyaml", - "externalReferences": [ - { - "comment": "from packaging metadata: Home-page", - "type": "website", - "url": "https://sourceforge.net/p/ruamel-yaml-clib/code/ci/default/tree" - } - ], - "licenses": [ - { - "license": { - "acknowledgement": "declared", - "id": "MIT" - } - } - ], - "name": "ruamel.yaml.clib", - "purl": "pkg:pypi/ruamel.yaml.clib@0.2.8", - "type": "library", - "version": "0.2.8" - }, { "bom-ref": "ruamel.yaml.jinja2==0.2.7", "description": "jinja2 pre and post-processor to update with YAML", @@ -108,9 +85,6 @@ ], "ref": "root-component" }, - { - "ref": "ruamel.yaml.clib==0.2.8" - }, { "dependsOn": [ "ruamel.yaml==0.18.5" @@ -119,7 +93,6 @@ }, { "dependsOn": [ - "ruamel.yaml.clib==0.2.8", "ruamel.yaml.jinja2==0.2.7" ], "ref": "ruamel.yaml==0.18.5" diff --git a/tests/_data/snapshots/environment/plain_normalize-packagename_1.6.xml.bin b/tests/_data/snapshots/environment/plain_normalize-packagename_1.6.xml.bin index 67f230716..adb0ca3e6 100644 --- a/tests/_data/snapshots/environment/plain_normalize-packagename_1.6.xml.bin +++ b/tests/_data/snapshots/environment/plain_normalize-packagename_1.6.xml.bin @@ -96,23 +96,6 @@ jinja2 - - ruamel.yaml.clib - 0.2.8 - C version of reader, parser and emitter for ruamel.yaml derived from libyaml - - - MIT - - - pkg:pypi/ruamel.yaml.clib@0.2.8 - - - https://sourceforge.net/p/ruamel-yaml-clib/code/ci/default/tree - from packaging metadata: Home-page - - - ruamel.yaml.jinja2 0.2.7 @@ -135,12 +118,10 @@ - - diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.0.xml.bin b/tests/_data/snapshots/environment/plain_with-extras_1.0.xml.bin index efa7100a4..5da4c1672 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.0.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.0.xml.bin @@ -10,9 +10,9 @@ attrs - 23.1.0 + 24.2.0 Classes Without Boilerplate - pkg:pypi/attrs@23.1.0 + pkg:pypi/attrs@24.2.0 false @@ -24,9 +24,9 @@ cyclonedx-python-lib - 6.0.0 + 8.2.0 Python library for CycloneDX - pkg:pypi/cyclonedx-python-lib@6.0.0 + pkg:pypi/cyclonedx-python-lib@8.2.0 false @@ -45,16 +45,16 @@ idna - 3.6 + 3.10 Internationalized Domain Names in Applications (IDNA) - pkg:pypi/idna@3.6 + pkg:pypi/idna@3.10 false - importlib-resources - 6.1.1 + importlib_resources + 6.4.5 Read resources from Python packages - pkg:pypi/importlib-resources@6.1.1 + pkg:pypi/importlib-resources@6.4.5 false @@ -66,44 +66,44 @@ jsonpointer - 2.4 + 3.0.0 Identify specific nodes in a JSON document (RFC 6901) - pkg:pypi/jsonpointer@2.4 + pkg:pypi/jsonpointer@3.0.0 false jsonschema - 4.20.0 + 4.23.0 An implementation of JSON Schema validation for Python - pkg:pypi/jsonschema@4.20.0 + pkg:pypi/jsonschema@4.23.0 false jsonschema-specifications - 2023.11.2 + 2023.3.6 The JSON Schema meta-schemas and vocabularies, exposed as a Registry - pkg:pypi/jsonschema-specifications@2023.11.2 + pkg:pypi/jsonschema-specifications@2023.3.6 false license-expression - 30.2.0 + 30.3.1 license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic. - pkg:pypi/license-expression@30.2.0 + pkg:pypi/license-expression@30.3.1 false lxml - 4.9.4 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. - pkg:pypi/lxml@4.9.4 + pkg:pypi/lxml@5.3.0 false packageurl-python - 0.13.1 + 0.16.0 A purl aka. Package URL parser and builder - pkg:pypi/packageurl-python@0.13.1 + pkg:pypi/packageurl-python@0.16.0 false @@ -115,23 +115,23 @@ py-serializable - 0.16.0 + 1.1.2 Library for serializing and deserializing Python Objects to and from JSON and XML. - pkg:pypi/py-serializable@0.16.0 + pkg:pypi/py-serializable@1.1.2 false python-dateutil - 2.8.2 + 2.9.0.post0 Extensions to the standard Python datetime module - pkg:pypi/python-dateutil@2.8.2 + pkg:pypi/python-dateutil@2.9.0.post0 false referencing - 0.32.0 + 0.35.1 JSON Referencing + Python - pkg:pypi/referencing@0.32.0 + pkg:pypi/referencing@0.35.1 false @@ -150,9 +150,9 @@ rpds-py - 0.15.2 + 0.20.0 Python bindings to Rust's persistent data structures (rpds) - pkg:pypi/rpds-py@0.15.2 + pkg:pypi/rpds-py@0.20.0 false @@ -171,9 +171,9 @@ types-python-dateutil - 2.8.19.14 + 2.9.0.20241003 Typing stubs for python-dateutil - pkg:pypi/types-python-dateutil@2.8.19.14 + pkg:pypi/types-python-dateutil@2.9.0.20241003 false @@ -185,16 +185,16 @@ webcolors - 1.13 + 24.8.0 A library for working with the color formats defined by HTML and CSS. - pkg:pypi/webcolors@1.13 + pkg:pypi/webcolors@24.8.0 false zipp - 3.17.0 + 3.20.2 Backport of pathlib-compatible object wrapper for zip files - pkg:pypi/zipp@3.17.0 + pkg:pypi/zipp@3.20.2 false diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.1.xml.bin b/tests/_data/snapshots/environment/plain_with-extras_1.1.xml.bin index 447fc37df..bb4a0dd06 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.1.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.1.xml.bin @@ -26,29 +26,21 @@ - + attrs - 23.1.0 + 24.2.0 Classes Without Boilerplate MIT - pkg:pypi/attrs@23.1.0 + pkg:pypi/attrs@24.2.0 https://www.attrs.org/ from packaging metadata Project-URL: Documentation - - https://github.com/python-attrs/attrs/issues - from packaging metadata Project-URL: Bug Tracker - - - https://github.com/python-attrs/attrs - from packaging metadata Project-URL: Source Code - https://github.com/sponsors/hynek from packaging metadata Project-URL: Funding @@ -61,6 +53,10 @@ https://www.attrs.org/en/stable/changelog.html from packaging metadata Project-URL: Changelog + + https://github.com/python-attrs/attrs + from packaging metadata Project-URL: GitHub + @@ -80,9 +76,9 @@ - + cyclonedx-python-lib - 6.0.0 + 8.2.0 Python library for CycloneDX @@ -92,7 +88,7 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/cyclonedx-python-lib@6.0.0 + pkg:pypi/cyclonedx-python-lib@8.2.0 https://cyclonedx-python-library.readthedocs.io/ @@ -162,16 +158,16 @@ - + idna - 3.6 + 3.10 Internationalized Domain Names in Applications (IDNA) License :: OSI Approved :: BSD License - pkg:pypi/idna@3.6 + pkg:pypi/idna@3.10 https://github.com/kjd/idna/issues @@ -187,24 +183,20 @@ - - importlib-resources - 6.1.1 + + importlib_resources + 6.4.5 Read resources from Python packages License :: OSI Approved :: Apache Software License - pkg:pypi/importlib-resources@6.1.1 + pkg:pypi/importlib-resources@6.4.5 - - https://importlib-resources.readthedocs.io/ - from packaging metadata Project-URL: Documentation - - + https://github.com/python/importlib_resources - from packaging metadata: Home-page + from packaging metadata Project-URL: Source @@ -241,9 +233,9 @@ - + jsonpointer - 2.4 + 3.0.0 Identify specific nodes in a JSON document (RFC 6901) @@ -254,7 +246,7 @@ Modified BSD License - pkg:pypi/jsonpointer@2.4 + pkg:pypi/jsonpointer@3.0.0 https://github.com/stefankoegl/python-json-pointer @@ -262,16 +254,16 @@ - + jsonschema - 4.20.0 + 4.23.0 An implementation of JSON Schema validation for Python MIT - pkg:pypi/jsonschema@4.20.0 + pkg:pypi/jsonschema@4.23.0 https://python-jsonschema.readthedocs.io/ @@ -303,16 +295,16 @@ - + jsonschema-specifications - 2023.11.2 + 2023.3.6 The JSON Schema meta-schemas and vocabularies, exposed as a Registry MIT - pkg:pypi/jsonschema-specifications@2023.11.2 + pkg:pypi/jsonschema-specifications@2023.3.6 https://jsonschema-specifications.readthedocs.io/ @@ -330,36 +322,32 @@ https://github.com/sponsors/Julian from packaging metadata Project-URL: Funding - - https://tidelift.com/subscription/pkg/pypi-jsonschema-specifications?utm_source=pypi-jsonschema-specifications&utm_medium=referral&utm_campaign=pypi-link - from packaging metadata Project-URL: Tidelift - https://github.com/python-jsonschema/jsonschema-specifications from packaging metadata Project-URL: Homepage - + license-expression - 30.2.0 + 30.3.1 license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic. Apache-2.0 - pkg:pypi/license-expression@30.2.0 + pkg:pypi/license-expression@30.3.1 - https://github.com/nexB/license-expression + https://github.com/aboutcode-org/license-expression from packaging metadata: Home-page - + lxml - 4.9.4 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -369,7 +357,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@4.9.4 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -381,16 +369,16 @@ - + packageurl-python - 0.13.1 + 0.16.0 A purl aka. Package URL parser and builder MIT - pkg:pypi/packageurl-python@0.13.1 + pkg:pypi/packageurl-python@0.16.0 https://github.com/package-url/packageurl-python @@ -415,9 +403,9 @@ - + py-serializable - 0.16.0 + 1.1.2 Library for serializing and deserializing Python Objects to and from JSON and XML. @@ -427,8 +415,12 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/py-serializable@0.16.0 + pkg:pypi/py-serializable@1.1.2 + + https://py-serializable.readthedocs.io/ + from packaging metadata Project-URL: Documentation + https://github.com/madpah/serializable/issues from packaging metadata Project-URL: Bug Tracker @@ -438,14 +430,14 @@ from packaging metadata Project-URL: Repository - https://github.com/madpah/serializable + https://github.com/madpah/serializable#readme from packaging metadata: Home-page - + python-dateutil - 2.8.2 + 2.9.0.post0 Extensions to the standard Python datetime module @@ -459,7 +451,7 @@ Dual License - pkg:pypi/python-dateutil@2.8.2 + pkg:pypi/python-dateutil@2.9.0.post0 https://dateutil.readthedocs.io/en/stable/ @@ -475,16 +467,16 @@ - + referencing - 0.32.0 + 0.35.1 JSON Referencing + Python MIT - pkg:pypi/referencing@0.32.0 + pkg:pypi/referencing@0.35.1 https://referencing.readthedocs.io/ @@ -506,6 +498,10 @@ https://tidelift.com/subscription/pkg/pypi-referencing?utm_source=pypi-referencing&utm_medium=referral&utm_campaign=pypi-link from packaging metadata Project-URL: Tidelift + + https://referencing.readthedocs.io/en/stable/changes/ + from packaging metadata Project-URL: Changelog + https://github.com/python-jsonschema/referencing from packaging metadata Project-URL: Homepage @@ -558,16 +554,16 @@ - + rpds-py - 0.15.2 + 0.20.0 Python bindings to Rust's persistent data structures (rpds) MIT - pkg:pypi/rpds-py@0.15.2 + pkg:pypi/rpds-py@0.20.0 https://rpds.readthedocs.io/ @@ -633,20 +629,19 @@ - + types-python-dateutil - 2.8.19.14 + 2.9.0.20241003 Typing stubs for python-dateutil - License :: OSI Approved :: Apache Software License + Apache-2.0 - declared license of 'types-python-dateutil' - Apache-2.0 license + License :: OSI Approved :: Apache Software License - pkg:pypi/types-python-dateutil@2.8.19.14 + pkg:pypi/types-python-dateutil@2.9.0.20241003 https://gitter.im/python/typing @@ -691,9 +686,9 @@ - + webcolors - 1.13 + 24.8.0 A library for working with the color formats defined by HTML and CSS. @@ -703,7 +698,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/webcolors@1.13 + pkg:pypi/webcolors@24.8.0 https://webcolors.readthedocs.io @@ -715,20 +710,20 @@ - + zipp - 3.17.0 + 3.20.2 Backport of pathlib-compatible object wrapper for zip files MIT - pkg:pypi/zipp@3.17.0 + pkg:pypi/zipp@3.20.2 - + https://github.com/jaraco/zipp - from packaging metadata: Home-page + from packaging metadata Project-URL: Source diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.2.json.bin b/tests/_data/snapshots/environment/plain_with-extras_1.2.json.bin index bb23087ea..a579be150 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.2.json.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.2.json.bin @@ -33,7 +33,7 @@ "version": "1.3.0" }, { - "bom-ref": "attrs==23.1.0", + "bom-ref": "attrs==24.2.0", "description": "Classes Without Boilerplate", "externalReferences": [ { @@ -41,16 +41,6 @@ "type": "documentation", "url": "https://www.attrs.org/" }, - { - "comment": "from packaging metadata Project-URL: Bug Tracker", - "type": "issue-tracker", - "url": "https://github.com/python-attrs/attrs/issues" - }, - { - "comment": "from packaging metadata Project-URL: Source Code", - "type": "other", - "url": "https://github.com/python-attrs/attrs" - }, { "comment": "from packaging metadata Project-URL: Funding", "type": "other", @@ -65,6 +55,11 @@ "comment": "from packaging metadata Project-URL: Changelog", "type": "other", "url": "https://www.attrs.org/en/stable/changelog.html" + }, + { + "comment": "from packaging metadata Project-URL: GitHub", + "type": "vcs", + "url": "https://github.com/python-attrs/attrs" } ], "licenses": [ @@ -75,9 +70,9 @@ } ], "name": "attrs", - "purl": "pkg:pypi/attrs@23.1.0", + "purl": "pkg:pypi/attrs@24.2.0", "type": "library", - "version": "23.1.0" + "version": "24.2.0" }, { "bom-ref": "boolean.py==4.0", @@ -102,7 +97,7 @@ "version": "4.0" }, { - "bom-ref": "cyclonedx-python-lib==6.0.0", + "bom-ref": "cyclonedx-python-lib==8.2.0", "description": "Python library for CycloneDX", "externalReferences": [ { @@ -144,9 +139,9 @@ } ], "name": "cyclonedx-python-lib", - "purl": "pkg:pypi/cyclonedx-python-lib@6.0.0", + "purl": "pkg:pypi/cyclonedx-python-lib@8.2.0", "type": "library", - "version": "6.0.0" + "version": "8.2.0" }, { "bom-ref": "defusedxml==0.7.1", @@ -216,7 +211,7 @@ "version": "1.5.1" }, { - "bom-ref": "idna==3.6", + "bom-ref": "idna==3.10", "description": "Internationalized Domain Names in Applications (IDNA)", "externalReferences": [ { @@ -243,22 +238,17 @@ } ], "name": "idna", - "purl": "pkg:pypi/idna@3.6", + "purl": "pkg:pypi/idna@3.10", "type": "library", - "version": "3.6" + "version": "3.10" }, { - "bom-ref": "importlib-resources==6.1.1", + "bom-ref": "importlib_resources==6.4.5", "description": "Read resources from Python packages", "externalReferences": [ { - "comment": "from packaging metadata Project-URL: Documentation", - "type": "documentation", - "url": "https://importlib-resources.readthedocs.io/" - }, - { - "comment": "from packaging metadata: Home-page", - "type": "website", + "comment": "from packaging metadata Project-URL: Source", + "type": "other", "url": "https://github.com/python/importlib_resources" } ], @@ -269,10 +259,10 @@ } } ], - "name": "importlib-resources", - "purl": "pkg:pypi/importlib-resources@6.1.1", + "name": "importlib_resources", + "purl": "pkg:pypi/importlib-resources@6.4.5", "type": "library", - "version": "6.1.1" + "version": "6.4.5" }, { "bom-ref": "isoduration==20.11.0", @@ -321,7 +311,7 @@ "version": "20.11.0" }, { - "bom-ref": "jsonpointer==2.4", + "bom-ref": "jsonpointer==3.0.0", "description": "Identify specific nodes in a JSON document (RFC 6901) ", "externalReferences": [ { @@ -347,12 +337,12 @@ } ], "name": "jsonpointer", - "purl": "pkg:pypi/jsonpointer@2.4", + "purl": "pkg:pypi/jsonpointer@3.0.0", "type": "library", - "version": "2.4" + "version": "3.0.0" }, { - "bom-ref": "jsonschema==4.20.0", + "bom-ref": "jsonschema==4.23.0", "description": "An implementation of JSON Schema validation for Python", "externalReferences": [ { @@ -399,12 +389,12 @@ } ], "name": "jsonschema", - "purl": "pkg:pypi/jsonschema@4.20.0", + "purl": "pkg:pypi/jsonschema@4.23.0", "type": "library", - "version": "4.20.0" + "version": "4.23.0" }, { - "bom-ref": "jsonschema-specifications==2023.11.2", + "bom-ref": "jsonschema-specifications==2023.3.6", "description": "The JSON Schema meta-schemas and vocabularies, exposed as a Registry", "externalReferences": [ { @@ -427,11 +417,6 @@ "type": "other", "url": "https://github.com/sponsors/Julian" }, - { - "comment": "from packaging metadata Project-URL: Tidelift", - "type": "other", - "url": "https://tidelift.com/subscription/pkg/pypi-jsonschema-specifications?utm_source=pypi-jsonschema-specifications&utm_medium=referral&utm_campaign=pypi-link" - }, { "comment": "from packaging metadata Project-URL: Homepage", "type": "website", @@ -446,18 +431,18 @@ } ], "name": "jsonschema-specifications", - "purl": "pkg:pypi/jsonschema-specifications@2023.11.2", + "purl": "pkg:pypi/jsonschema-specifications@2023.3.6", "type": "library", - "version": "2023.11.2" + "version": "2023.3.6" }, { - "bom-ref": "license-expression==30.2.0", + "bom-ref": "license-expression==30.3.1", "description": "license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic.", "externalReferences": [ { "comment": "from packaging metadata: Home-page", "type": "website", - "url": "https://github.com/nexB/license-expression" + "url": "https://github.com/aboutcode-org/license-expression" } ], "licenses": [ @@ -468,12 +453,12 @@ } ], "name": "license-expression", - "purl": "pkg:pypi/license-expression@30.2.0", + "purl": "pkg:pypi/license-expression@30.3.1", "type": "library", - "version": "30.2.0" + "version": "30.3.1" }, { - "bom-ref": "lxml==4.9.4", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -500,12 +485,12 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@4.9.4", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "4.9.4" + "version": "5.3.0" }, { - "bom-ref": "packageurl-python==0.13.1", + "bom-ref": "packageurl-python==0.16.0", "description": "A purl aka. Package URL parser and builder", "externalReferences": [ { @@ -522,9 +507,9 @@ } ], "name": "packageurl-python", - "purl": "pkg:pypi/packageurl-python@0.13.1", + "purl": "pkg:pypi/packageurl-python@0.16.0", "type": "library", - "version": "0.13.1" + "version": "0.16.0" }, { "bom-ref": "pkgutil_resolve_name==1.3.10", @@ -549,9 +534,14 @@ "version": "1.3.10" }, { - "bom-ref": "py-serializable==0.16.0", + "bom-ref": "py-serializable==1.1.2", "description": "Library for serializing and deserializing Python Objects to and from JSON and XML.", "externalReferences": [ + { + "comment": "from packaging metadata Project-URL: Documentation", + "type": "documentation", + "url": "https://py-serializable.readthedocs.io/" + }, { "comment": "from packaging metadata Project-URL: Bug Tracker", "type": "issue-tracker", @@ -565,7 +555,7 @@ { "comment": "from packaging metadata: Home-page", "type": "website", - "url": "https://github.com/madpah/serializable" + "url": "https://github.com/madpah/serializable#readme" } ], "licenses": [ @@ -581,12 +571,12 @@ } ], "name": "py-serializable", - "purl": "pkg:pypi/py-serializable@0.16.0", + "purl": "pkg:pypi/py-serializable@1.1.2", "type": "library", - "version": "0.16.0" + "version": "1.1.2" }, { - "bom-ref": "python-dateutil==2.8.2", + "bom-ref": "python-dateutil==2.9.0.post0", "description": "Extensions to the standard Python datetime module", "externalReferences": [ { @@ -627,12 +617,12 @@ } ], "name": "python-dateutil", - "purl": "pkg:pypi/python-dateutil@2.8.2", + "purl": "pkg:pypi/python-dateutil@2.9.0.post0", "type": "library", - "version": "2.8.2" + "version": "2.9.0.post0" }, { - "bom-ref": "referencing==0.32.0", + "bom-ref": "referencing==0.35.1", "description": "JSON Referencing + Python", "externalReferences": [ { @@ -660,6 +650,11 @@ "type": "other", "url": "https://tidelift.com/subscription/pkg/pypi-referencing?utm_source=pypi-referencing&utm_medium=referral&utm_campaign=pypi-link" }, + { + "comment": "from packaging metadata Project-URL: Changelog", + "type": "other", + "url": "https://referencing.readthedocs.io/en/stable/changes/" + }, { "comment": "from packaging metadata Project-URL: Homepage", "type": "website", @@ -674,9 +669,9 @@ } ], "name": "referencing", - "purl": "pkg:pypi/referencing@0.32.0", + "purl": "pkg:pypi/referencing@0.35.1", "type": "library", - "version": "0.32.0" + "version": "0.35.1" }, { "bom-ref": "rfc3339-validator==0.1.4", @@ -746,7 +741,7 @@ "version": "1.3.8" }, { - "bom-ref": "rpds-py==0.15.2", + "bom-ref": "rpds-py==0.20.0", "description": "Python bindings to Rust's persistent data structures (rpds)", "externalReferences": [ { @@ -788,9 +783,9 @@ } ], "name": "rpds-py", - "purl": "pkg:pypi/rpds-py@0.15.2", + "purl": "pkg:pypi/rpds-py@0.20.0", "type": "library", - "version": "0.15.2" + "version": "0.20.0" }, { "bom-ref": "six==1.16.0", @@ -846,7 +841,7 @@ "version": "2.4.0" }, { - "bom-ref": "types-python-dateutil==2.8.19.14", + "bom-ref": "types-python-dateutil==2.9.0.20241003", "description": "Typing stubs for python-dateutil", "externalReferences": [ { @@ -878,23 +873,19 @@ "licenses": [ { "license": { - "name": "License :: OSI Approved :: Apache Software License" + "id": "Apache-2.0" } }, { "license": { - "name": "declared license of 'types-python-dateutil'", - "text": { - "content": "Apache-2.0 license", - "contentType": "text/plain" - } + "name": "License :: OSI Approved :: Apache Software License" } } ], "name": "types-python-dateutil", - "purl": "pkg:pypi/types-python-dateutil@2.8.19.14", + "purl": "pkg:pypi/types-python-dateutil@2.9.0.20241003", "type": "library", - "version": "2.8.19.14" + "version": "2.9.0.20241003" }, { "bom-ref": "uri-template==1.3.0", @@ -928,7 +919,7 @@ "version": "1.3.0" }, { - "bom-ref": "webcolors==1.13", + "bom-ref": "webcolors==24.8.0", "description": "A library for working with the color formats defined by HTML and CSS.", "externalReferences": [ { @@ -955,17 +946,17 @@ } ], "name": "webcolors", - "purl": "pkg:pypi/webcolors@1.13", + "purl": "pkg:pypi/webcolors@24.8.0", "type": "library", - "version": "1.13" + "version": "24.8.0" }, { - "bom-ref": "zipp==3.17.0", + "bom-ref": "zipp==3.20.2", "description": "Backport of pathlib-compatible object wrapper for zip files", "externalReferences": [ { - "comment": "from packaging metadata: Home-page", - "type": "website", + "comment": "from packaging metadata Project-URL: Source", + "type": "other", "url": "https://github.com/jaraco/zipp" } ], @@ -977,35 +968,35 @@ } ], "name": "zipp", - "purl": "pkg:pypi/zipp@3.17.0", + "purl": "pkg:pypi/zipp@3.20.2", "type": "library", - "version": "3.17.0" + "version": "3.20.2" } ], "dependencies": [ { "dependsOn": [ - "python-dateutil==2.8.2", - "types-python-dateutil==2.8.19.14" + "python-dateutil==2.9.0.post0", + "types-python-dateutil==2.9.0.20241003" ], "ref": "arrow==1.3.0" }, { - "ref": "attrs==23.1.0" + "ref": "attrs==24.2.0" }, { "ref": "boolean.py==4.0" }, { "dependsOn": [ - "jsonschema==4.20.0", - "license-expression==30.2.0", - "lxml==4.9.4", - "packageurl-python==0.13.1", - "py-serializable==0.16.0", + "jsonschema==4.23.0", + "license-expression==30.3.1", + "lxml==5.3.0", + "packageurl-python==0.16.0", + "py-serializable==1.1.2", "sortedcontainers==2.4.0" ], - "ref": "cyclonedx-python-lib==6.0.0" + "ref": "cyclonedx-python-lib==8.2.0" }, { "ref": "defusedxml==0.7.1" @@ -1014,13 +1005,13 @@ "ref": "fqdn==1.5.1" }, { - "ref": "idna==3.6" + "ref": "idna==3.10" }, { "dependsOn": [ - "zipp==3.17.0" + "zipp==3.20.2" ], - "ref": "importlib-resources==6.1.1" + "ref": "importlib_resources==6.4.5" }, { "dependsOn": [ @@ -1029,45 +1020,45 @@ "ref": "isoduration==20.11.0" }, { - "ref": "jsonpointer==2.4" + "ref": "jsonpointer==3.0.0" }, { "dependsOn": [ - "importlib-resources==6.1.1", - "referencing==0.32.0" + "importlib_resources==6.4.5", + "referencing==0.35.1" ], - "ref": "jsonschema-specifications==2023.11.2" + "ref": "jsonschema-specifications==2023.3.6" }, { "dependsOn": [ - "attrs==23.1.0", + "attrs==24.2.0", "fqdn==1.5.1", - "idna==3.6", - "importlib-resources==6.1.1", + "idna==3.10", + "importlib_resources==6.4.5", "isoduration==20.11.0", - "jsonpointer==2.4", - "jsonschema-specifications==2023.11.2", + "jsonpointer==3.0.0", + "jsonschema-specifications==2023.3.6", "pkgutil_resolve_name==1.3.10", - "referencing==0.32.0", + "referencing==0.35.1", "rfc3339-validator==0.1.4", "rfc3987==1.3.8", - "rpds-py==0.15.2", + "rpds-py==0.20.0", "uri-template==1.3.0", - "webcolors==1.13" + "webcolors==24.8.0" ], - "ref": "jsonschema==4.20.0" + "ref": "jsonschema==4.23.0" }, { "dependsOn": [ "boolean.py==4.0" ], - "ref": "license-expression==30.2.0" + "ref": "license-expression==30.3.1" }, { - "ref": "lxml==4.9.4" + "ref": "lxml==5.3.0" }, { - "ref": "packageurl-python==0.13.1" + "ref": "packageurl-python==0.16.0" }, { "ref": "pkgutil_resolve_name==1.3.10" @@ -1076,20 +1067,20 @@ "dependsOn": [ "defusedxml==0.7.1" ], - "ref": "py-serializable==0.16.0" + "ref": "py-serializable==1.1.2" }, { "dependsOn": [ "six==1.16.0" ], - "ref": "python-dateutil==2.8.2" + "ref": "python-dateutil==2.9.0.post0" }, { "dependsOn": [ - "attrs==23.1.0", - "rpds-py==0.15.2" + "attrs==24.2.0", + "rpds-py==0.20.0" ], - "ref": "referencing==0.32.0" + "ref": "referencing==0.35.1" }, { "dependsOn": [ @@ -1102,12 +1093,12 @@ }, { "dependsOn": [ - "cyclonedx-python-lib==6.0.0" + "cyclonedx-python-lib==8.2.0" ], "ref": "root-component" }, { - "ref": "rpds-py==0.15.2" + "ref": "rpds-py==0.20.0" }, { "ref": "six==1.16.0" @@ -1116,16 +1107,19 @@ "ref": "sortedcontainers==2.4.0" }, { - "ref": "types-python-dateutil==2.8.19.14" + "ref": "types-python-dateutil==2.9.0.20241003" }, { "ref": "uri-template==1.3.0" }, { - "ref": "webcolors==1.13" + "ref": "webcolors==24.8.0" }, { - "ref": "zipp==3.17.0" + "dependsOn": [ + "importlib_resources==6.4.5" + ], + "ref": "zipp==3.20.2" } ], "metadata": { diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.2.xml.bin b/tests/_data/snapshots/environment/plain_with-extras_1.2.xml.bin index 6ce4e6c9e..8486b18a4 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.2.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.2.xml.bin @@ -45,29 +45,21 @@ - + attrs - 23.1.0 + 24.2.0 Classes Without Boilerplate MIT - pkg:pypi/attrs@23.1.0 + pkg:pypi/attrs@24.2.0 https://www.attrs.org/ from packaging metadata Project-URL: Documentation - - https://github.com/python-attrs/attrs/issues - from packaging metadata Project-URL: Bug Tracker - - - https://github.com/python-attrs/attrs - from packaging metadata Project-URL: Source Code - https://github.com/sponsors/hynek from packaging metadata Project-URL: Funding @@ -80,6 +72,10 @@ https://www.attrs.org/en/stable/changelog.html from packaging metadata Project-URL: Changelog + + https://github.com/python-attrs/attrs + from packaging metadata Project-URL: GitHub + @@ -99,9 +95,9 @@ - + cyclonedx-python-lib - 6.0.0 + 8.2.0 Python library for CycloneDX @@ -111,7 +107,7 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/cyclonedx-python-lib@6.0.0 + pkg:pypi/cyclonedx-python-lib@8.2.0 https://cyclonedx-python-library.readthedocs.io/ @@ -181,16 +177,16 @@ - + idna - 3.6 + 3.10 Internationalized Domain Names in Applications (IDNA) License :: OSI Approved :: BSD License - pkg:pypi/idna@3.6 + pkg:pypi/idna@3.10 https://github.com/kjd/idna/issues @@ -206,24 +202,20 @@ - - importlib-resources - 6.1.1 + + importlib_resources + 6.4.5 Read resources from Python packages License :: OSI Approved :: Apache Software License - pkg:pypi/importlib-resources@6.1.1 + pkg:pypi/importlib-resources@6.4.5 - - https://importlib-resources.readthedocs.io/ - from packaging metadata Project-URL: Documentation - - + https://github.com/python/importlib_resources - from packaging metadata: Home-page + from packaging metadata Project-URL: Source @@ -260,9 +252,9 @@ - + jsonpointer - 2.4 + 3.0.0 Identify specific nodes in a JSON document (RFC 6901) @@ -273,7 +265,7 @@ Modified BSD License - pkg:pypi/jsonpointer@2.4 + pkg:pypi/jsonpointer@3.0.0 https://github.com/stefankoegl/python-json-pointer @@ -281,16 +273,16 @@ - + jsonschema - 4.20.0 + 4.23.0 An implementation of JSON Schema validation for Python MIT - pkg:pypi/jsonschema@4.20.0 + pkg:pypi/jsonschema@4.23.0 https://python-jsonschema.readthedocs.io/ @@ -322,16 +314,16 @@ - + jsonschema-specifications - 2023.11.2 + 2023.3.6 The JSON Schema meta-schemas and vocabularies, exposed as a Registry MIT - pkg:pypi/jsonschema-specifications@2023.11.2 + pkg:pypi/jsonschema-specifications@2023.3.6 https://jsonschema-specifications.readthedocs.io/ @@ -349,36 +341,32 @@ https://github.com/sponsors/Julian from packaging metadata Project-URL: Funding - - https://tidelift.com/subscription/pkg/pypi-jsonschema-specifications?utm_source=pypi-jsonschema-specifications&utm_medium=referral&utm_campaign=pypi-link - from packaging metadata Project-URL: Tidelift - https://github.com/python-jsonschema/jsonschema-specifications from packaging metadata Project-URL: Homepage - + license-expression - 30.2.0 + 30.3.1 license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic. Apache-2.0 - pkg:pypi/license-expression@30.2.0 + pkg:pypi/license-expression@30.3.1 - https://github.com/nexB/license-expression + https://github.com/aboutcode-org/license-expression from packaging metadata: Home-page - + lxml - 4.9.4 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -388,7 +376,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@4.9.4 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -400,16 +388,16 @@ - + packageurl-python - 0.13.1 + 0.16.0 A purl aka. Package URL parser and builder MIT - pkg:pypi/packageurl-python@0.13.1 + pkg:pypi/packageurl-python@0.16.0 https://github.com/package-url/packageurl-python @@ -434,9 +422,9 @@ - + py-serializable - 0.16.0 + 1.1.2 Library for serializing and deserializing Python Objects to and from JSON and XML. @@ -446,8 +434,12 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/py-serializable@0.16.0 + pkg:pypi/py-serializable@1.1.2 + + https://py-serializable.readthedocs.io/ + from packaging metadata Project-URL: Documentation + https://github.com/madpah/serializable/issues from packaging metadata Project-URL: Bug Tracker @@ -457,14 +449,14 @@ from packaging metadata Project-URL: Repository - https://github.com/madpah/serializable + https://github.com/madpah/serializable#readme from packaging metadata: Home-page - + python-dateutil - 2.8.2 + 2.9.0.post0 Extensions to the standard Python datetime module @@ -478,7 +470,7 @@ Dual License - pkg:pypi/python-dateutil@2.8.2 + pkg:pypi/python-dateutil@2.9.0.post0 https://dateutil.readthedocs.io/en/stable/ @@ -494,16 +486,16 @@ - + referencing - 0.32.0 + 0.35.1 JSON Referencing + Python MIT - pkg:pypi/referencing@0.32.0 + pkg:pypi/referencing@0.35.1 https://referencing.readthedocs.io/ @@ -525,6 +517,10 @@ https://tidelift.com/subscription/pkg/pypi-referencing?utm_source=pypi-referencing&utm_medium=referral&utm_campaign=pypi-link from packaging metadata Project-URL: Tidelift + + https://referencing.readthedocs.io/en/stable/changes/ + from packaging metadata Project-URL: Changelog + https://github.com/python-jsonschema/referencing from packaging metadata Project-URL: Homepage @@ -577,16 +573,16 @@ - + rpds-py - 0.15.2 + 0.20.0 Python bindings to Rust's persistent data structures (rpds) MIT - pkg:pypi/rpds-py@0.15.2 + pkg:pypi/rpds-py@0.20.0 https://rpds.readthedocs.io/ @@ -652,20 +648,19 @@ - + types-python-dateutil - 2.8.19.14 + 2.9.0.20241003 Typing stubs for python-dateutil - License :: OSI Approved :: Apache Software License + Apache-2.0 - declared license of 'types-python-dateutil' - Apache-2.0 license + License :: OSI Approved :: Apache Software License - pkg:pypi/types-python-dateutil@2.8.19.14 + pkg:pypi/types-python-dateutil@2.9.0.20241003 https://gitter.im/python/typing @@ -710,9 +705,9 @@ - + webcolors - 1.13 + 24.8.0 A library for working with the color formats defined by HTML and CSS. @@ -722,7 +717,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/webcolors@1.13 + pkg:pypi/webcolors@24.8.0 https://webcolors.readthedocs.io @@ -734,98 +729,100 @@ - + zipp - 3.17.0 + 3.20.2 Backport of pathlib-compatible object wrapper for zip files MIT - pkg:pypi/zipp@3.17.0 + pkg:pypi/zipp@3.20.2 - + https://github.com/jaraco/zipp - from packaging metadata: Home-page + from packaging metadata Project-URL: Source - - + + - + - - - - - - + + + + + + - - - + + + - - - - + + + + - - + + - - + + - - + + - + - + - + - + - - + + - + - + - - - + + + - + - + - + - - + + + + diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.3.json.bin b/tests/_data/snapshots/environment/plain_with-extras_1.3.json.bin index 325645dad..f66d4161e 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.3.json.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.3.json.bin @@ -33,7 +33,7 @@ "version": "1.3.0" }, { - "bom-ref": "attrs==23.1.0", + "bom-ref": "attrs==24.2.0", "description": "Classes Without Boilerplate", "externalReferences": [ { @@ -41,16 +41,6 @@ "type": "documentation", "url": "https://www.attrs.org/" }, - { - "comment": "from packaging metadata Project-URL: Bug Tracker", - "type": "issue-tracker", - "url": "https://github.com/python-attrs/attrs/issues" - }, - { - "comment": "from packaging metadata Project-URL: Source Code", - "type": "other", - "url": "https://github.com/python-attrs/attrs" - }, { "comment": "from packaging metadata Project-URL: Funding", "type": "other", @@ -65,6 +55,11 @@ "comment": "from packaging metadata Project-URL: Changelog", "type": "other", "url": "https://www.attrs.org/en/stable/changelog.html" + }, + { + "comment": "from packaging metadata Project-URL: GitHub", + "type": "vcs", + "url": "https://github.com/python-attrs/attrs" } ], "licenses": [ @@ -75,9 +70,9 @@ } ], "name": "attrs", - "purl": "pkg:pypi/attrs@23.1.0", + "purl": "pkg:pypi/attrs@24.2.0", "type": "library", - "version": "23.1.0" + "version": "24.2.0" }, { "bom-ref": "boolean.py==4.0", @@ -102,7 +97,7 @@ "version": "4.0" }, { - "bom-ref": "cyclonedx-python-lib==6.0.0", + "bom-ref": "cyclonedx-python-lib==8.2.0", "description": "Python library for CycloneDX", "externalReferences": [ { @@ -150,9 +145,9 @@ "value": "xml-validation" } ], - "purl": "pkg:pypi/cyclonedx-python-lib@6.0.0", + "purl": "pkg:pypi/cyclonedx-python-lib@8.2.0", "type": "library", - "version": "6.0.0" + "version": "8.2.0" }, { "bom-ref": "defusedxml==0.7.1", @@ -222,7 +217,7 @@ "version": "1.5.1" }, { - "bom-ref": "idna==3.6", + "bom-ref": "idna==3.10", "description": "Internationalized Domain Names in Applications (IDNA)", "externalReferences": [ { @@ -249,22 +244,17 @@ } ], "name": "idna", - "purl": "pkg:pypi/idna@3.6", + "purl": "pkg:pypi/idna@3.10", "type": "library", - "version": "3.6" + "version": "3.10" }, { - "bom-ref": "importlib-resources==6.1.1", + "bom-ref": "importlib_resources==6.4.5", "description": "Read resources from Python packages", "externalReferences": [ { - "comment": "from packaging metadata Project-URL: Documentation", - "type": "documentation", - "url": "https://importlib-resources.readthedocs.io/" - }, - { - "comment": "from packaging metadata: Home-page", - "type": "website", + "comment": "from packaging metadata Project-URL: Source", + "type": "other", "url": "https://github.com/python/importlib_resources" } ], @@ -275,10 +265,10 @@ } } ], - "name": "importlib-resources", - "purl": "pkg:pypi/importlib-resources@6.1.1", + "name": "importlib_resources", + "purl": "pkg:pypi/importlib-resources@6.4.5", "type": "library", - "version": "6.1.1" + "version": "6.4.5" }, { "bom-ref": "isoduration==20.11.0", @@ -327,7 +317,7 @@ "version": "20.11.0" }, { - "bom-ref": "jsonpointer==2.4", + "bom-ref": "jsonpointer==3.0.0", "description": "Identify specific nodes in a JSON document (RFC 6901) ", "externalReferences": [ { @@ -353,12 +343,12 @@ } ], "name": "jsonpointer", - "purl": "pkg:pypi/jsonpointer@2.4", + "purl": "pkg:pypi/jsonpointer@3.0.0", "type": "library", - "version": "2.4" + "version": "3.0.0" }, { - "bom-ref": "jsonschema==4.20.0", + "bom-ref": "jsonschema==4.23.0", "description": "An implementation of JSON Schema validation for Python", "externalReferences": [ { @@ -411,12 +401,12 @@ "value": "format" } ], - "purl": "pkg:pypi/jsonschema@4.20.0", + "purl": "pkg:pypi/jsonschema@4.23.0", "type": "library", - "version": "4.20.0" + "version": "4.23.0" }, { - "bom-ref": "jsonschema-specifications==2023.11.2", + "bom-ref": "jsonschema-specifications==2023.3.6", "description": "The JSON Schema meta-schemas and vocabularies, exposed as a Registry", "externalReferences": [ { @@ -439,11 +429,6 @@ "type": "other", "url": "https://github.com/sponsors/Julian" }, - { - "comment": "from packaging metadata Project-URL: Tidelift", - "type": "other", - "url": "https://tidelift.com/subscription/pkg/pypi-jsonschema-specifications?utm_source=pypi-jsonschema-specifications&utm_medium=referral&utm_campaign=pypi-link" - }, { "comment": "from packaging metadata Project-URL: Homepage", "type": "website", @@ -458,18 +443,18 @@ } ], "name": "jsonschema-specifications", - "purl": "pkg:pypi/jsonschema-specifications@2023.11.2", + "purl": "pkg:pypi/jsonschema-specifications@2023.3.6", "type": "library", - "version": "2023.11.2" + "version": "2023.3.6" }, { - "bom-ref": "license-expression==30.2.0", + "bom-ref": "license-expression==30.3.1", "description": "license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic.", "externalReferences": [ { "comment": "from packaging metadata: Home-page", "type": "website", - "url": "https://github.com/nexB/license-expression" + "url": "https://github.com/aboutcode-org/license-expression" } ], "licenses": [ @@ -480,12 +465,12 @@ } ], "name": "license-expression", - "purl": "pkg:pypi/license-expression@30.2.0", + "purl": "pkg:pypi/license-expression@30.3.1", "type": "library", - "version": "30.2.0" + "version": "30.3.1" }, { - "bom-ref": "lxml==4.9.4", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -512,12 +497,12 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@4.9.4", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "4.9.4" + "version": "5.3.0" }, { - "bom-ref": "packageurl-python==0.13.1", + "bom-ref": "packageurl-python==0.16.0", "description": "A purl aka. Package URL parser and builder", "externalReferences": [ { @@ -534,9 +519,9 @@ } ], "name": "packageurl-python", - "purl": "pkg:pypi/packageurl-python@0.13.1", + "purl": "pkg:pypi/packageurl-python@0.16.0", "type": "library", - "version": "0.13.1" + "version": "0.16.0" }, { "bom-ref": "pkgutil_resolve_name==1.3.10", @@ -561,9 +546,14 @@ "version": "1.3.10" }, { - "bom-ref": "py-serializable==0.16.0", + "bom-ref": "py-serializable==1.1.2", "description": "Library for serializing and deserializing Python Objects to and from JSON and XML.", "externalReferences": [ + { + "comment": "from packaging metadata Project-URL: Documentation", + "type": "documentation", + "url": "https://py-serializable.readthedocs.io/" + }, { "comment": "from packaging metadata Project-URL: Bug Tracker", "type": "issue-tracker", @@ -577,7 +567,7 @@ { "comment": "from packaging metadata: Home-page", "type": "website", - "url": "https://github.com/madpah/serializable" + "url": "https://github.com/madpah/serializable#readme" } ], "licenses": [ @@ -593,12 +583,12 @@ } ], "name": "py-serializable", - "purl": "pkg:pypi/py-serializable@0.16.0", + "purl": "pkg:pypi/py-serializable@1.1.2", "type": "library", - "version": "0.16.0" + "version": "1.1.2" }, { - "bom-ref": "python-dateutil==2.8.2", + "bom-ref": "python-dateutil==2.9.0.post0", "description": "Extensions to the standard Python datetime module", "externalReferences": [ { @@ -639,12 +629,12 @@ } ], "name": "python-dateutil", - "purl": "pkg:pypi/python-dateutil@2.8.2", + "purl": "pkg:pypi/python-dateutil@2.9.0.post0", "type": "library", - "version": "2.8.2" + "version": "2.9.0.post0" }, { - "bom-ref": "referencing==0.32.0", + "bom-ref": "referencing==0.35.1", "description": "JSON Referencing + Python", "externalReferences": [ { @@ -672,6 +662,11 @@ "type": "other", "url": "https://tidelift.com/subscription/pkg/pypi-referencing?utm_source=pypi-referencing&utm_medium=referral&utm_campaign=pypi-link" }, + { + "comment": "from packaging metadata Project-URL: Changelog", + "type": "other", + "url": "https://referencing.readthedocs.io/en/stable/changes/" + }, { "comment": "from packaging metadata Project-URL: Homepage", "type": "website", @@ -686,9 +681,9 @@ } ], "name": "referencing", - "purl": "pkg:pypi/referencing@0.32.0", + "purl": "pkg:pypi/referencing@0.35.1", "type": "library", - "version": "0.32.0" + "version": "0.35.1" }, { "bom-ref": "rfc3339-validator==0.1.4", @@ -758,7 +753,7 @@ "version": "1.3.8" }, { - "bom-ref": "rpds-py==0.15.2", + "bom-ref": "rpds-py==0.20.0", "description": "Python bindings to Rust's persistent data structures (rpds)", "externalReferences": [ { @@ -800,9 +795,9 @@ } ], "name": "rpds-py", - "purl": "pkg:pypi/rpds-py@0.15.2", + "purl": "pkg:pypi/rpds-py@0.20.0", "type": "library", - "version": "0.15.2" + "version": "0.20.0" }, { "bom-ref": "six==1.16.0", @@ -858,7 +853,7 @@ "version": "2.4.0" }, { - "bom-ref": "types-python-dateutil==2.8.19.14", + "bom-ref": "types-python-dateutil==2.9.0.20241003", "description": "Typing stubs for python-dateutil", "externalReferences": [ { @@ -890,23 +885,19 @@ "licenses": [ { "license": { - "name": "License :: OSI Approved :: Apache Software License" + "id": "Apache-2.0" } }, { "license": { - "name": "declared license of 'types-python-dateutil'", - "text": { - "content": "Apache-2.0 license", - "contentType": "text/plain" - } + "name": "License :: OSI Approved :: Apache Software License" } } ], "name": "types-python-dateutil", - "purl": "pkg:pypi/types-python-dateutil@2.8.19.14", + "purl": "pkg:pypi/types-python-dateutil@2.9.0.20241003", "type": "library", - "version": "2.8.19.14" + "version": "2.9.0.20241003" }, { "bom-ref": "uri-template==1.3.0", @@ -940,7 +931,7 @@ "version": "1.3.0" }, { - "bom-ref": "webcolors==1.13", + "bom-ref": "webcolors==24.8.0", "description": "A library for working with the color formats defined by HTML and CSS.", "externalReferences": [ { @@ -967,17 +958,17 @@ } ], "name": "webcolors", - "purl": "pkg:pypi/webcolors@1.13", + "purl": "pkg:pypi/webcolors@24.8.0", "type": "library", - "version": "1.13" + "version": "24.8.0" }, { - "bom-ref": "zipp==3.17.0", + "bom-ref": "zipp==3.20.2", "description": "Backport of pathlib-compatible object wrapper for zip files", "externalReferences": [ { - "comment": "from packaging metadata: Home-page", - "type": "website", + "comment": "from packaging metadata Project-URL: Source", + "type": "other", "url": "https://github.com/jaraco/zipp" } ], @@ -989,35 +980,35 @@ } ], "name": "zipp", - "purl": "pkg:pypi/zipp@3.17.0", + "purl": "pkg:pypi/zipp@3.20.2", "type": "library", - "version": "3.17.0" + "version": "3.20.2" } ], "dependencies": [ { "dependsOn": [ - "python-dateutil==2.8.2", - "types-python-dateutil==2.8.19.14" + "python-dateutil==2.9.0.post0", + "types-python-dateutil==2.9.0.20241003" ], "ref": "arrow==1.3.0" }, { - "ref": "attrs==23.1.0" + "ref": "attrs==24.2.0" }, { "ref": "boolean.py==4.0" }, { "dependsOn": [ - "jsonschema==4.20.0", - "license-expression==30.2.0", - "lxml==4.9.4", - "packageurl-python==0.13.1", - "py-serializable==0.16.0", + "jsonschema==4.23.0", + "license-expression==30.3.1", + "lxml==5.3.0", + "packageurl-python==0.16.0", + "py-serializable==1.1.2", "sortedcontainers==2.4.0" ], - "ref": "cyclonedx-python-lib==6.0.0" + "ref": "cyclonedx-python-lib==8.2.0" }, { "ref": "defusedxml==0.7.1" @@ -1026,13 +1017,13 @@ "ref": "fqdn==1.5.1" }, { - "ref": "idna==3.6" + "ref": "idna==3.10" }, { "dependsOn": [ - "zipp==3.17.0" + "zipp==3.20.2" ], - "ref": "importlib-resources==6.1.1" + "ref": "importlib_resources==6.4.5" }, { "dependsOn": [ @@ -1041,45 +1032,45 @@ "ref": "isoduration==20.11.0" }, { - "ref": "jsonpointer==2.4" + "ref": "jsonpointer==3.0.0" }, { "dependsOn": [ - "importlib-resources==6.1.1", - "referencing==0.32.0" + "importlib_resources==6.4.5", + "referencing==0.35.1" ], - "ref": "jsonschema-specifications==2023.11.2" + "ref": "jsonschema-specifications==2023.3.6" }, { "dependsOn": [ - "attrs==23.1.0", + "attrs==24.2.0", "fqdn==1.5.1", - "idna==3.6", - "importlib-resources==6.1.1", + "idna==3.10", + "importlib_resources==6.4.5", "isoduration==20.11.0", - "jsonpointer==2.4", - "jsonschema-specifications==2023.11.2", + "jsonpointer==3.0.0", + "jsonschema-specifications==2023.3.6", "pkgutil_resolve_name==1.3.10", - "referencing==0.32.0", + "referencing==0.35.1", "rfc3339-validator==0.1.4", "rfc3987==1.3.8", - "rpds-py==0.15.2", + "rpds-py==0.20.0", "uri-template==1.3.0", - "webcolors==1.13" + "webcolors==24.8.0" ], - "ref": "jsonschema==4.20.0" + "ref": "jsonschema==4.23.0" }, { "dependsOn": [ "boolean.py==4.0" ], - "ref": "license-expression==30.2.0" + "ref": "license-expression==30.3.1" }, { - "ref": "lxml==4.9.4" + "ref": "lxml==5.3.0" }, { - "ref": "packageurl-python==0.13.1" + "ref": "packageurl-python==0.16.0" }, { "ref": "pkgutil_resolve_name==1.3.10" @@ -1088,20 +1079,20 @@ "dependsOn": [ "defusedxml==0.7.1" ], - "ref": "py-serializable==0.16.0" + "ref": "py-serializable==1.1.2" }, { "dependsOn": [ "six==1.16.0" ], - "ref": "python-dateutil==2.8.2" + "ref": "python-dateutil==2.9.0.post0" }, { "dependsOn": [ - "attrs==23.1.0", - "rpds-py==0.15.2" + "attrs==24.2.0", + "rpds-py==0.20.0" ], - "ref": "referencing==0.32.0" + "ref": "referencing==0.35.1" }, { "dependsOn": [ @@ -1114,12 +1105,12 @@ }, { "dependsOn": [ - "cyclonedx-python-lib==6.0.0" + "cyclonedx-python-lib==8.2.0" ], "ref": "root-component" }, { - "ref": "rpds-py==0.15.2" + "ref": "rpds-py==0.20.0" }, { "ref": "six==1.16.0" @@ -1128,16 +1119,19 @@ "ref": "sortedcontainers==2.4.0" }, { - "ref": "types-python-dateutil==2.8.19.14" + "ref": "types-python-dateutil==2.9.0.20241003" }, { "ref": "uri-template==1.3.0" }, { - "ref": "webcolors==1.13" + "ref": "webcolors==24.8.0" }, { - "ref": "zipp==3.17.0" + "dependsOn": [ + "importlib_resources==6.4.5" + ], + "ref": "zipp==3.20.2" } ], "metadata": { diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.3.xml.bin b/tests/_data/snapshots/environment/plain_with-extras_1.3.xml.bin index c925acca9..cc40e9bd9 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.3.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.3.xml.bin @@ -48,29 +48,21 @@ - + attrs - 23.1.0 + 24.2.0 Classes Without Boilerplate MIT - pkg:pypi/attrs@23.1.0 + pkg:pypi/attrs@24.2.0 https://www.attrs.org/ from packaging metadata Project-URL: Documentation - - https://github.com/python-attrs/attrs/issues - from packaging metadata Project-URL: Bug Tracker - - - https://github.com/python-attrs/attrs - from packaging metadata Project-URL: Source Code - https://github.com/sponsors/hynek from packaging metadata Project-URL: Funding @@ -83,6 +75,10 @@ https://www.attrs.org/en/stable/changelog.html from packaging metadata Project-URL: Changelog + + https://github.com/python-attrs/attrs + from packaging metadata Project-URL: GitHub + @@ -102,9 +98,9 @@ - + cyclonedx-python-lib - 6.0.0 + 8.2.0 Python library for CycloneDX @@ -114,7 +110,7 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/cyclonedx-python-lib@6.0.0 + pkg:pypi/cyclonedx-python-lib@8.2.0 https://cyclonedx-python-library.readthedocs.io/ @@ -187,16 +183,16 @@ - + idna - 3.6 + 3.10 Internationalized Domain Names in Applications (IDNA) License :: OSI Approved :: BSD License - pkg:pypi/idna@3.6 + pkg:pypi/idna@3.10 https://github.com/kjd/idna/issues @@ -212,24 +208,20 @@ - - importlib-resources - 6.1.1 + + importlib_resources + 6.4.5 Read resources from Python packages License :: OSI Approved :: Apache Software License - pkg:pypi/importlib-resources@6.1.1 + pkg:pypi/importlib-resources@6.4.5 - - https://importlib-resources.readthedocs.io/ - from packaging metadata Project-URL: Documentation - - + https://github.com/python/importlib_resources - from packaging metadata: Home-page + from packaging metadata Project-URL: Source @@ -266,9 +258,9 @@ - + jsonpointer - 2.4 + 3.0.0 Identify specific nodes in a JSON document (RFC 6901) @@ -279,7 +271,7 @@ Modified BSD License - pkg:pypi/jsonpointer@2.4 + pkg:pypi/jsonpointer@3.0.0 https://github.com/stefankoegl/python-json-pointer @@ -287,16 +279,16 @@ - + jsonschema - 4.20.0 + 4.23.0 An implementation of JSON Schema validation for Python MIT - pkg:pypi/jsonschema@4.20.0 + pkg:pypi/jsonschema@4.23.0 https://python-jsonschema.readthedocs.io/ @@ -331,16 +323,16 @@ format - + jsonschema-specifications - 2023.11.2 + 2023.3.6 The JSON Schema meta-schemas and vocabularies, exposed as a Registry MIT - pkg:pypi/jsonschema-specifications@2023.11.2 + pkg:pypi/jsonschema-specifications@2023.3.6 https://jsonschema-specifications.readthedocs.io/ @@ -358,36 +350,32 @@ https://github.com/sponsors/Julian from packaging metadata Project-URL: Funding - - https://tidelift.com/subscription/pkg/pypi-jsonschema-specifications?utm_source=pypi-jsonschema-specifications&utm_medium=referral&utm_campaign=pypi-link - from packaging metadata Project-URL: Tidelift - https://github.com/python-jsonschema/jsonschema-specifications from packaging metadata Project-URL: Homepage - + license-expression - 30.2.0 + 30.3.1 license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic. Apache-2.0 - pkg:pypi/license-expression@30.2.0 + pkg:pypi/license-expression@30.3.1 - https://github.com/nexB/license-expression + https://github.com/aboutcode-org/license-expression from packaging metadata: Home-page - + lxml - 4.9.4 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -397,7 +385,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@4.9.4 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -409,16 +397,16 @@ - + packageurl-python - 0.13.1 + 0.16.0 A purl aka. Package URL parser and builder MIT - pkg:pypi/packageurl-python@0.13.1 + pkg:pypi/packageurl-python@0.16.0 https://github.com/package-url/packageurl-python @@ -443,9 +431,9 @@ - + py-serializable - 0.16.0 + 1.1.2 Library for serializing and deserializing Python Objects to and from JSON and XML. @@ -455,8 +443,12 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/py-serializable@0.16.0 + pkg:pypi/py-serializable@1.1.2 + + https://py-serializable.readthedocs.io/ + from packaging metadata Project-URL: Documentation + https://github.com/madpah/serializable/issues from packaging metadata Project-URL: Bug Tracker @@ -466,14 +458,14 @@ from packaging metadata Project-URL: Repository - https://github.com/madpah/serializable + https://github.com/madpah/serializable#readme from packaging metadata: Home-page - + python-dateutil - 2.8.2 + 2.9.0.post0 Extensions to the standard Python datetime module @@ -487,7 +479,7 @@ Dual License - pkg:pypi/python-dateutil@2.8.2 + pkg:pypi/python-dateutil@2.9.0.post0 https://dateutil.readthedocs.io/en/stable/ @@ -503,16 +495,16 @@ - + referencing - 0.32.0 + 0.35.1 JSON Referencing + Python MIT - pkg:pypi/referencing@0.32.0 + pkg:pypi/referencing@0.35.1 https://referencing.readthedocs.io/ @@ -534,6 +526,10 @@ https://tidelift.com/subscription/pkg/pypi-referencing?utm_source=pypi-referencing&utm_medium=referral&utm_campaign=pypi-link from packaging metadata Project-URL: Tidelift + + https://referencing.readthedocs.io/en/stable/changes/ + from packaging metadata Project-URL: Changelog + https://github.com/python-jsonschema/referencing from packaging metadata Project-URL: Homepage @@ -586,16 +582,16 @@ - + rpds-py - 0.15.2 + 0.20.0 Python bindings to Rust's persistent data structures (rpds) MIT - pkg:pypi/rpds-py@0.15.2 + pkg:pypi/rpds-py@0.20.0 https://rpds.readthedocs.io/ @@ -661,20 +657,19 @@ - + types-python-dateutil - 2.8.19.14 + 2.9.0.20241003 Typing stubs for python-dateutil - License :: OSI Approved :: Apache Software License + Apache-2.0 - declared license of 'types-python-dateutil' - Apache-2.0 license + License :: OSI Approved :: Apache Software License - pkg:pypi/types-python-dateutil@2.8.19.14 + pkg:pypi/types-python-dateutil@2.9.0.20241003 https://gitter.im/python/typing @@ -719,9 +714,9 @@ - + webcolors - 1.13 + 24.8.0 A library for working with the color formats defined by HTML and CSS. @@ -731,7 +726,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/webcolors@1.13 + pkg:pypi/webcolors@24.8.0 https://webcolors.readthedocs.io @@ -743,98 +738,100 @@ - + zipp - 3.17.0 + 3.20.2 Backport of pathlib-compatible object wrapper for zip files MIT - pkg:pypi/zipp@3.17.0 + pkg:pypi/zipp@3.20.2 - + https://github.com/jaraco/zipp - from packaging metadata: Home-page + from packaging metadata Project-URL: Source - - + + - + - - - - - - + + + + + + - - - + + + - - - - + + + + - - + + - - + + - - + + - + - + - + - + - - + + - + - + - - - + + + - + - + - + - - + + + + diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.4.json.bin b/tests/_data/snapshots/environment/plain_with-extras_1.4.json.bin index 8d705f398..f8768d791 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.4.json.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.4.json.bin @@ -33,7 +33,7 @@ "version": "1.3.0" }, { - "bom-ref": "attrs==23.1.0", + "bom-ref": "attrs==24.2.0", "description": "Classes Without Boilerplate", "externalReferences": [ { @@ -41,16 +41,6 @@ "type": "documentation", "url": "https://www.attrs.org/" }, - { - "comment": "from packaging metadata Project-URL: Bug Tracker", - "type": "issue-tracker", - "url": "https://github.com/python-attrs/attrs/issues" - }, - { - "comment": "from packaging metadata Project-URL: Source Code", - "type": "other", - "url": "https://github.com/python-attrs/attrs" - }, { "comment": "from packaging metadata Project-URL: Funding", "type": "other", @@ -65,6 +55,11 @@ "comment": "from packaging metadata Project-URL: Changelog", "type": "release-notes", "url": "https://www.attrs.org/en/stable/changelog.html" + }, + { + "comment": "from packaging metadata Project-URL: GitHub", + "type": "vcs", + "url": "https://github.com/python-attrs/attrs" } ], "licenses": [ @@ -75,9 +70,9 @@ } ], "name": "attrs", - "purl": "pkg:pypi/attrs@23.1.0", + "purl": "pkg:pypi/attrs@24.2.0", "type": "library", - "version": "23.1.0" + "version": "24.2.0" }, { "bom-ref": "boolean.py==4.0", @@ -102,7 +97,7 @@ "version": "4.0" }, { - "bom-ref": "cyclonedx-python-lib==6.0.0", + "bom-ref": "cyclonedx-python-lib==8.2.0", "description": "Python library for CycloneDX", "externalReferences": [ { @@ -150,9 +145,9 @@ "value": "xml-validation" } ], - "purl": "pkg:pypi/cyclonedx-python-lib@6.0.0", + "purl": "pkg:pypi/cyclonedx-python-lib@8.2.0", "type": "library", - "version": "6.0.0" + "version": "8.2.0" }, { "bom-ref": "defusedxml==0.7.1", @@ -222,7 +217,7 @@ "version": "1.5.1" }, { - "bom-ref": "idna==3.6", + "bom-ref": "idna==3.10", "description": "Internationalized Domain Names in Applications (IDNA)", "externalReferences": [ { @@ -249,22 +244,17 @@ } ], "name": "idna", - "purl": "pkg:pypi/idna@3.6", + "purl": "pkg:pypi/idna@3.10", "type": "library", - "version": "3.6" + "version": "3.10" }, { - "bom-ref": "importlib-resources==6.1.1", + "bom-ref": "importlib_resources==6.4.5", "description": "Read resources from Python packages", "externalReferences": [ { - "comment": "from packaging metadata Project-URL: Documentation", - "type": "documentation", - "url": "https://importlib-resources.readthedocs.io/" - }, - { - "comment": "from packaging metadata: Home-page", - "type": "website", + "comment": "from packaging metadata Project-URL: Source", + "type": "other", "url": "https://github.com/python/importlib_resources" } ], @@ -275,10 +265,10 @@ } } ], - "name": "importlib-resources", - "purl": "pkg:pypi/importlib-resources@6.1.1", + "name": "importlib_resources", + "purl": "pkg:pypi/importlib-resources@6.4.5", "type": "library", - "version": "6.1.1" + "version": "6.4.5" }, { "bom-ref": "isoduration==20.11.0", @@ -327,7 +317,7 @@ "version": "20.11.0" }, { - "bom-ref": "jsonpointer==2.4", + "bom-ref": "jsonpointer==3.0.0", "description": "Identify specific nodes in a JSON document (RFC 6901) ", "externalReferences": [ { @@ -353,12 +343,12 @@ } ], "name": "jsonpointer", - "purl": "pkg:pypi/jsonpointer@2.4", + "purl": "pkg:pypi/jsonpointer@3.0.0", "type": "library", - "version": "2.4" + "version": "3.0.0" }, { - "bom-ref": "jsonschema==4.20.0", + "bom-ref": "jsonschema==4.23.0", "description": "An implementation of JSON Schema validation for Python", "externalReferences": [ { @@ -411,12 +401,12 @@ "value": "format" } ], - "purl": "pkg:pypi/jsonschema@4.20.0", + "purl": "pkg:pypi/jsonschema@4.23.0", "type": "library", - "version": "4.20.0" + "version": "4.23.0" }, { - "bom-ref": "jsonschema-specifications==2023.11.2", + "bom-ref": "jsonschema-specifications==2023.3.6", "description": "The JSON Schema meta-schemas and vocabularies, exposed as a Registry", "externalReferences": [ { @@ -439,11 +429,6 @@ "type": "other", "url": "https://github.com/sponsors/Julian" }, - { - "comment": "from packaging metadata Project-URL: Tidelift", - "type": "other", - "url": "https://tidelift.com/subscription/pkg/pypi-jsonschema-specifications?utm_source=pypi-jsonschema-specifications&utm_medium=referral&utm_campaign=pypi-link" - }, { "comment": "from packaging metadata Project-URL: Homepage", "type": "website", @@ -458,18 +443,18 @@ } ], "name": "jsonschema-specifications", - "purl": "pkg:pypi/jsonschema-specifications@2023.11.2", + "purl": "pkg:pypi/jsonschema-specifications@2023.3.6", "type": "library", - "version": "2023.11.2" + "version": "2023.3.6" }, { - "bom-ref": "license-expression==30.2.0", + "bom-ref": "license-expression==30.3.1", "description": "license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic.", "externalReferences": [ { "comment": "from packaging metadata: Home-page", "type": "website", - "url": "https://github.com/nexB/license-expression" + "url": "https://github.com/aboutcode-org/license-expression" } ], "licenses": [ @@ -480,12 +465,12 @@ } ], "name": "license-expression", - "purl": "pkg:pypi/license-expression@30.2.0", + "purl": "pkg:pypi/license-expression@30.3.1", "type": "library", - "version": "30.2.0" + "version": "30.3.1" }, { - "bom-ref": "lxml==4.9.4", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -512,12 +497,12 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@4.9.4", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "4.9.4" + "version": "5.3.0" }, { - "bom-ref": "packageurl-python==0.13.1", + "bom-ref": "packageurl-python==0.16.0", "description": "A purl aka. Package URL parser and builder", "externalReferences": [ { @@ -534,9 +519,9 @@ } ], "name": "packageurl-python", - "purl": "pkg:pypi/packageurl-python@0.13.1", + "purl": "pkg:pypi/packageurl-python@0.16.0", "type": "library", - "version": "0.13.1" + "version": "0.16.0" }, { "bom-ref": "pkgutil_resolve_name==1.3.10", @@ -561,9 +546,14 @@ "version": "1.3.10" }, { - "bom-ref": "py-serializable==0.16.0", + "bom-ref": "py-serializable==1.1.2", "description": "Library for serializing and deserializing Python Objects to and from JSON and XML.", "externalReferences": [ + { + "comment": "from packaging metadata Project-URL: Documentation", + "type": "documentation", + "url": "https://py-serializable.readthedocs.io/" + }, { "comment": "from packaging metadata Project-URL: Bug Tracker", "type": "issue-tracker", @@ -577,7 +567,7 @@ { "comment": "from packaging metadata: Home-page", "type": "website", - "url": "https://github.com/madpah/serializable" + "url": "https://github.com/madpah/serializable#readme" } ], "licenses": [ @@ -593,12 +583,12 @@ } ], "name": "py-serializable", - "purl": "pkg:pypi/py-serializable@0.16.0", + "purl": "pkg:pypi/py-serializable@1.1.2", "type": "library", - "version": "0.16.0" + "version": "1.1.2" }, { - "bom-ref": "python-dateutil==2.8.2", + "bom-ref": "python-dateutil==2.9.0.post0", "description": "Extensions to the standard Python datetime module", "externalReferences": [ { @@ -639,12 +629,12 @@ } ], "name": "python-dateutil", - "purl": "pkg:pypi/python-dateutil@2.8.2", + "purl": "pkg:pypi/python-dateutil@2.9.0.post0", "type": "library", - "version": "2.8.2" + "version": "2.9.0.post0" }, { - "bom-ref": "referencing==0.32.0", + "bom-ref": "referencing==0.35.1", "description": "JSON Referencing + Python", "externalReferences": [ { @@ -672,6 +662,11 @@ "type": "other", "url": "https://tidelift.com/subscription/pkg/pypi-referencing?utm_source=pypi-referencing&utm_medium=referral&utm_campaign=pypi-link" }, + { + "comment": "from packaging metadata Project-URL: Changelog", + "type": "release-notes", + "url": "https://referencing.readthedocs.io/en/stable/changes/" + }, { "comment": "from packaging metadata Project-URL: Homepage", "type": "website", @@ -686,9 +681,9 @@ } ], "name": "referencing", - "purl": "pkg:pypi/referencing@0.32.0", + "purl": "pkg:pypi/referencing@0.35.1", "type": "library", - "version": "0.32.0" + "version": "0.35.1" }, { "bom-ref": "rfc3339-validator==0.1.4", @@ -758,7 +753,7 @@ "version": "1.3.8" }, { - "bom-ref": "rpds-py==0.15.2", + "bom-ref": "rpds-py==0.20.0", "description": "Python bindings to Rust's persistent data structures (rpds)", "externalReferences": [ { @@ -800,9 +795,9 @@ } ], "name": "rpds-py", - "purl": "pkg:pypi/rpds-py@0.15.2", + "purl": "pkg:pypi/rpds-py@0.20.0", "type": "library", - "version": "0.15.2" + "version": "0.20.0" }, { "bom-ref": "six==1.16.0", @@ -858,7 +853,7 @@ "version": "2.4.0" }, { - "bom-ref": "types-python-dateutil==2.8.19.14", + "bom-ref": "types-python-dateutil==2.9.0.20241003", "description": "Typing stubs for python-dateutil", "externalReferences": [ { @@ -890,23 +885,19 @@ "licenses": [ { "license": { - "name": "License :: OSI Approved :: Apache Software License" + "id": "Apache-2.0" } }, { "license": { - "name": "declared license of 'types-python-dateutil'", - "text": { - "content": "Apache-2.0 license", - "contentType": "text/plain" - } + "name": "License :: OSI Approved :: Apache Software License" } } ], "name": "types-python-dateutil", - "purl": "pkg:pypi/types-python-dateutil@2.8.19.14", + "purl": "pkg:pypi/types-python-dateutil@2.9.0.20241003", "type": "library", - "version": "2.8.19.14" + "version": "2.9.0.20241003" }, { "bom-ref": "uri-template==1.3.0", @@ -940,7 +931,7 @@ "version": "1.3.0" }, { - "bom-ref": "webcolors==1.13", + "bom-ref": "webcolors==24.8.0", "description": "A library for working with the color formats defined by HTML and CSS.", "externalReferences": [ { @@ -967,17 +958,17 @@ } ], "name": "webcolors", - "purl": "pkg:pypi/webcolors@1.13", + "purl": "pkg:pypi/webcolors@24.8.0", "type": "library", - "version": "1.13" + "version": "24.8.0" }, { - "bom-ref": "zipp==3.17.0", + "bom-ref": "zipp==3.20.2", "description": "Backport of pathlib-compatible object wrapper for zip files", "externalReferences": [ { - "comment": "from packaging metadata: Home-page", - "type": "website", + "comment": "from packaging metadata Project-URL: Source", + "type": "other", "url": "https://github.com/jaraco/zipp" } ], @@ -989,35 +980,35 @@ } ], "name": "zipp", - "purl": "pkg:pypi/zipp@3.17.0", + "purl": "pkg:pypi/zipp@3.20.2", "type": "library", - "version": "3.17.0" + "version": "3.20.2" } ], "dependencies": [ { "dependsOn": [ - "python-dateutil==2.8.2", - "types-python-dateutil==2.8.19.14" + "python-dateutil==2.9.0.post0", + "types-python-dateutil==2.9.0.20241003" ], "ref": "arrow==1.3.0" }, { - "ref": "attrs==23.1.0" + "ref": "attrs==24.2.0" }, { "ref": "boolean.py==4.0" }, { "dependsOn": [ - "jsonschema==4.20.0", - "license-expression==30.2.0", - "lxml==4.9.4", - "packageurl-python==0.13.1", - "py-serializable==0.16.0", + "jsonschema==4.23.0", + "license-expression==30.3.1", + "lxml==5.3.0", + "packageurl-python==0.16.0", + "py-serializable==1.1.2", "sortedcontainers==2.4.0" ], - "ref": "cyclonedx-python-lib==6.0.0" + "ref": "cyclonedx-python-lib==8.2.0" }, { "ref": "defusedxml==0.7.1" @@ -1026,13 +1017,13 @@ "ref": "fqdn==1.5.1" }, { - "ref": "idna==3.6" + "ref": "idna==3.10" }, { "dependsOn": [ - "zipp==3.17.0" + "zipp==3.20.2" ], - "ref": "importlib-resources==6.1.1" + "ref": "importlib_resources==6.4.5" }, { "dependsOn": [ @@ -1041,45 +1032,45 @@ "ref": "isoduration==20.11.0" }, { - "ref": "jsonpointer==2.4" + "ref": "jsonpointer==3.0.0" }, { "dependsOn": [ - "importlib-resources==6.1.1", - "referencing==0.32.0" + "importlib_resources==6.4.5", + "referencing==0.35.1" ], - "ref": "jsonschema-specifications==2023.11.2" + "ref": "jsonschema-specifications==2023.3.6" }, { "dependsOn": [ - "attrs==23.1.0", + "attrs==24.2.0", "fqdn==1.5.1", - "idna==3.6", - "importlib-resources==6.1.1", + "idna==3.10", + "importlib_resources==6.4.5", "isoduration==20.11.0", - "jsonpointer==2.4", - "jsonschema-specifications==2023.11.2", + "jsonpointer==3.0.0", + "jsonschema-specifications==2023.3.6", "pkgutil_resolve_name==1.3.10", - "referencing==0.32.0", + "referencing==0.35.1", "rfc3339-validator==0.1.4", "rfc3987==1.3.8", - "rpds-py==0.15.2", + "rpds-py==0.20.0", "uri-template==1.3.0", - "webcolors==1.13" + "webcolors==24.8.0" ], - "ref": "jsonschema==4.20.0" + "ref": "jsonschema==4.23.0" }, { "dependsOn": [ "boolean.py==4.0" ], - "ref": "license-expression==30.2.0" + "ref": "license-expression==30.3.1" }, { - "ref": "lxml==4.9.4" + "ref": "lxml==5.3.0" }, { - "ref": "packageurl-python==0.13.1" + "ref": "packageurl-python==0.16.0" }, { "ref": "pkgutil_resolve_name==1.3.10" @@ -1088,20 +1079,20 @@ "dependsOn": [ "defusedxml==0.7.1" ], - "ref": "py-serializable==0.16.0" + "ref": "py-serializable==1.1.2" }, { "dependsOn": [ "six==1.16.0" ], - "ref": "python-dateutil==2.8.2" + "ref": "python-dateutil==2.9.0.post0" }, { "dependsOn": [ - "attrs==23.1.0", - "rpds-py==0.15.2" + "attrs==24.2.0", + "rpds-py==0.20.0" ], - "ref": "referencing==0.32.0" + "ref": "referencing==0.35.1" }, { "dependsOn": [ @@ -1114,12 +1105,12 @@ }, { "dependsOn": [ - "cyclonedx-python-lib==6.0.0" + "cyclonedx-python-lib==8.2.0" ], "ref": "root-component" }, { - "ref": "rpds-py==0.15.2" + "ref": "rpds-py==0.20.0" }, { "ref": "six==1.16.0" @@ -1128,16 +1119,19 @@ "ref": "sortedcontainers==2.4.0" }, { - "ref": "types-python-dateutil==2.8.19.14" + "ref": "types-python-dateutil==2.9.0.20241003" }, { "ref": "uri-template==1.3.0" }, { - "ref": "webcolors==1.13" + "ref": "webcolors==24.8.0" }, { - "ref": "zipp==3.17.0" + "dependsOn": [ + "importlib_resources==6.4.5" + ], + "ref": "zipp==3.20.2" } ], "metadata": { diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.4.xml.bin b/tests/_data/snapshots/environment/plain_with-extras_1.4.xml.bin index 2a510cf5b..ab0774ad2 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.4.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.4.xml.bin @@ -75,29 +75,21 @@ - + attrs - 23.1.0 + 24.2.0 Classes Without Boilerplate MIT - pkg:pypi/attrs@23.1.0 + pkg:pypi/attrs@24.2.0 https://www.attrs.org/ from packaging metadata Project-URL: Documentation - - https://github.com/python-attrs/attrs/issues - from packaging metadata Project-URL: Bug Tracker - - - https://github.com/python-attrs/attrs - from packaging metadata Project-URL: Source Code - https://github.com/sponsors/hynek from packaging metadata Project-URL: Funding @@ -110,6 +102,10 @@ https://www.attrs.org/en/stable/changelog.html from packaging metadata Project-URL: Changelog + + https://github.com/python-attrs/attrs + from packaging metadata Project-URL: GitHub + @@ -129,9 +125,9 @@ - + cyclonedx-python-lib - 6.0.0 + 8.2.0 Python library for CycloneDX @@ -141,7 +137,7 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/cyclonedx-python-lib@6.0.0 + pkg:pypi/cyclonedx-python-lib@8.2.0 https://cyclonedx-python-library.readthedocs.io/ @@ -214,16 +210,16 @@ - + idna - 3.6 + 3.10 Internationalized Domain Names in Applications (IDNA) License :: OSI Approved :: BSD License - pkg:pypi/idna@3.6 + pkg:pypi/idna@3.10 https://github.com/kjd/idna/issues @@ -239,24 +235,20 @@ - - importlib-resources - 6.1.1 + + importlib_resources + 6.4.5 Read resources from Python packages License :: OSI Approved :: Apache Software License - pkg:pypi/importlib-resources@6.1.1 + pkg:pypi/importlib-resources@6.4.5 - - https://importlib-resources.readthedocs.io/ - from packaging metadata Project-URL: Documentation - - + https://github.com/python/importlib_resources - from packaging metadata: Home-page + from packaging metadata Project-URL: Source @@ -293,9 +285,9 @@ - + jsonpointer - 2.4 + 3.0.0 Identify specific nodes in a JSON document (RFC 6901) @@ -306,7 +298,7 @@ Modified BSD License - pkg:pypi/jsonpointer@2.4 + pkg:pypi/jsonpointer@3.0.0 https://github.com/stefankoegl/python-json-pointer @@ -314,16 +306,16 @@ - + jsonschema - 4.20.0 + 4.23.0 An implementation of JSON Schema validation for Python MIT - pkg:pypi/jsonschema@4.20.0 + pkg:pypi/jsonschema@4.23.0 https://python-jsonschema.readthedocs.io/ @@ -358,16 +350,16 @@ format - + jsonschema-specifications - 2023.11.2 + 2023.3.6 The JSON Schema meta-schemas and vocabularies, exposed as a Registry MIT - pkg:pypi/jsonschema-specifications@2023.11.2 + pkg:pypi/jsonschema-specifications@2023.3.6 https://jsonschema-specifications.readthedocs.io/ @@ -385,36 +377,32 @@ https://github.com/sponsors/Julian from packaging metadata Project-URL: Funding - - https://tidelift.com/subscription/pkg/pypi-jsonschema-specifications?utm_source=pypi-jsonschema-specifications&utm_medium=referral&utm_campaign=pypi-link - from packaging metadata Project-URL: Tidelift - https://github.com/python-jsonschema/jsonschema-specifications from packaging metadata Project-URL: Homepage - + license-expression - 30.2.0 + 30.3.1 license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic. Apache-2.0 - pkg:pypi/license-expression@30.2.0 + pkg:pypi/license-expression@30.3.1 - https://github.com/nexB/license-expression + https://github.com/aboutcode-org/license-expression from packaging metadata: Home-page - + lxml - 4.9.4 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -424,7 +412,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@4.9.4 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -436,16 +424,16 @@ - + packageurl-python - 0.13.1 + 0.16.0 A purl aka. Package URL parser and builder MIT - pkg:pypi/packageurl-python@0.13.1 + pkg:pypi/packageurl-python@0.16.0 https://github.com/package-url/packageurl-python @@ -470,9 +458,9 @@ - + py-serializable - 0.16.0 + 1.1.2 Library for serializing and deserializing Python Objects to and from JSON and XML. @@ -482,8 +470,12 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/py-serializable@0.16.0 + pkg:pypi/py-serializable@1.1.2 + + https://py-serializable.readthedocs.io/ + from packaging metadata Project-URL: Documentation + https://github.com/madpah/serializable/issues from packaging metadata Project-URL: Bug Tracker @@ -493,14 +485,14 @@ from packaging metadata Project-URL: Repository - https://github.com/madpah/serializable + https://github.com/madpah/serializable#readme from packaging metadata: Home-page - + python-dateutil - 2.8.2 + 2.9.0.post0 Extensions to the standard Python datetime module @@ -514,7 +506,7 @@ Dual License - pkg:pypi/python-dateutil@2.8.2 + pkg:pypi/python-dateutil@2.9.0.post0 https://dateutil.readthedocs.io/en/stable/ @@ -530,16 +522,16 @@ - + referencing - 0.32.0 + 0.35.1 JSON Referencing + Python MIT - pkg:pypi/referencing@0.32.0 + pkg:pypi/referencing@0.35.1 https://referencing.readthedocs.io/ @@ -561,6 +553,10 @@ https://tidelift.com/subscription/pkg/pypi-referencing?utm_source=pypi-referencing&utm_medium=referral&utm_campaign=pypi-link from packaging metadata Project-URL: Tidelift + + https://referencing.readthedocs.io/en/stable/changes/ + from packaging metadata Project-URL: Changelog + https://github.com/python-jsonschema/referencing from packaging metadata Project-URL: Homepage @@ -613,16 +609,16 @@ - + rpds-py - 0.15.2 + 0.20.0 Python bindings to Rust's persistent data structures (rpds) MIT - pkg:pypi/rpds-py@0.15.2 + pkg:pypi/rpds-py@0.20.0 https://rpds.readthedocs.io/ @@ -688,20 +684,19 @@ - + types-python-dateutil - 2.8.19.14 + 2.9.0.20241003 Typing stubs for python-dateutil - License :: OSI Approved :: Apache Software License + Apache-2.0 - declared license of 'types-python-dateutil' - Apache-2.0 license + License :: OSI Approved :: Apache Software License - pkg:pypi/types-python-dateutil@2.8.19.14 + pkg:pypi/types-python-dateutil@2.9.0.20241003 https://gitter.im/python/typing @@ -746,9 +741,9 @@ - + webcolors - 1.13 + 24.8.0 A library for working with the color formats defined by HTML and CSS. @@ -758,7 +753,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/webcolors@1.13 + pkg:pypi/webcolors@24.8.0 https://webcolors.readthedocs.io @@ -770,98 +765,100 @@ - + zipp - 3.17.0 + 3.20.2 Backport of pathlib-compatible object wrapper for zip files MIT - pkg:pypi/zipp@3.17.0 + pkg:pypi/zipp@3.20.2 - + https://github.com/jaraco/zipp - from packaging metadata: Home-page + from packaging metadata Project-URL: Source - - + + - + - - - - - - + + + + + + - - - + + + - - - - + + + + - - + + - - + + - - + + - + - + - + - + - - + + - + - + - - - + + + - + - + - + - - + + + + diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.5.json.bin b/tests/_data/snapshots/environment/plain_with-extras_1.5.json.bin index 99d61b307..bb5d5efef 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.5.json.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.5.json.bin @@ -33,7 +33,7 @@ "version": "1.3.0" }, { - "bom-ref": "attrs==23.1.0", + "bom-ref": "attrs==24.2.0", "description": "Classes Without Boilerplate", "externalReferences": [ { @@ -41,16 +41,6 @@ "type": "documentation", "url": "https://www.attrs.org/" }, - { - "comment": "from packaging metadata Project-URL: Bug Tracker", - "type": "issue-tracker", - "url": "https://github.com/python-attrs/attrs/issues" - }, - { - "comment": "from packaging metadata Project-URL: Source Code", - "type": "other", - "url": "https://github.com/python-attrs/attrs" - }, { "comment": "from packaging metadata Project-URL: Funding", "type": "other", @@ -65,6 +55,11 @@ "comment": "from packaging metadata Project-URL: Changelog", "type": "release-notes", "url": "https://www.attrs.org/en/stable/changelog.html" + }, + { + "comment": "from packaging metadata Project-URL: GitHub", + "type": "vcs", + "url": "https://github.com/python-attrs/attrs" } ], "licenses": [ @@ -75,9 +70,9 @@ } ], "name": "attrs", - "purl": "pkg:pypi/attrs@23.1.0", + "purl": "pkg:pypi/attrs@24.2.0", "type": "library", - "version": "23.1.0" + "version": "24.2.0" }, { "bom-ref": "boolean.py==4.0", @@ -102,7 +97,7 @@ "version": "4.0" }, { - "bom-ref": "cyclonedx-python-lib==6.0.0", + "bom-ref": "cyclonedx-python-lib==8.2.0", "description": "Python library for CycloneDX", "externalReferences": [ { @@ -150,9 +145,9 @@ "value": "xml-validation" } ], - "purl": "pkg:pypi/cyclonedx-python-lib@6.0.0", + "purl": "pkg:pypi/cyclonedx-python-lib@8.2.0", "type": "library", - "version": "6.0.0" + "version": "8.2.0" }, { "bom-ref": "defusedxml==0.7.1", @@ -222,7 +217,7 @@ "version": "1.5.1" }, { - "bom-ref": "idna==3.6", + "bom-ref": "idna==3.10", "description": "Internationalized Domain Names in Applications (IDNA)", "externalReferences": [ { @@ -249,22 +244,17 @@ } ], "name": "idna", - "purl": "pkg:pypi/idna@3.6", + "purl": "pkg:pypi/idna@3.10", "type": "library", - "version": "3.6" + "version": "3.10" }, { - "bom-ref": "importlib-resources==6.1.1", + "bom-ref": "importlib_resources==6.4.5", "description": "Read resources from Python packages", "externalReferences": [ { - "comment": "from packaging metadata Project-URL: Documentation", - "type": "documentation", - "url": "https://importlib-resources.readthedocs.io/" - }, - { - "comment": "from packaging metadata: Home-page", - "type": "website", + "comment": "from packaging metadata Project-URL: Source", + "type": "other", "url": "https://github.com/python/importlib_resources" } ], @@ -275,10 +265,10 @@ } } ], - "name": "importlib-resources", - "purl": "pkg:pypi/importlib-resources@6.1.1", + "name": "importlib_resources", + "purl": "pkg:pypi/importlib-resources@6.4.5", "type": "library", - "version": "6.1.1" + "version": "6.4.5" }, { "bom-ref": "isoduration==20.11.0", @@ -327,7 +317,7 @@ "version": "20.11.0" }, { - "bom-ref": "jsonpointer==2.4", + "bom-ref": "jsonpointer==3.0.0", "description": "Identify specific nodes in a JSON document (RFC 6901) ", "externalReferences": [ { @@ -353,12 +343,12 @@ } ], "name": "jsonpointer", - "purl": "pkg:pypi/jsonpointer@2.4", + "purl": "pkg:pypi/jsonpointer@3.0.0", "type": "library", - "version": "2.4" + "version": "3.0.0" }, { - "bom-ref": "jsonschema==4.20.0", + "bom-ref": "jsonschema==4.23.0", "description": "An implementation of JSON Schema validation for Python", "externalReferences": [ { @@ -411,12 +401,12 @@ "value": "format" } ], - "purl": "pkg:pypi/jsonschema@4.20.0", + "purl": "pkg:pypi/jsonschema@4.23.0", "type": "library", - "version": "4.20.0" + "version": "4.23.0" }, { - "bom-ref": "jsonschema-specifications==2023.11.2", + "bom-ref": "jsonschema-specifications==2023.3.6", "description": "The JSON Schema meta-schemas and vocabularies, exposed as a Registry", "externalReferences": [ { @@ -439,11 +429,6 @@ "type": "other", "url": "https://github.com/sponsors/Julian" }, - { - "comment": "from packaging metadata Project-URL: Tidelift", - "type": "other", - "url": "https://tidelift.com/subscription/pkg/pypi-jsonschema-specifications?utm_source=pypi-jsonschema-specifications&utm_medium=referral&utm_campaign=pypi-link" - }, { "comment": "from packaging metadata Project-URL: Homepage", "type": "website", @@ -458,18 +443,18 @@ } ], "name": "jsonschema-specifications", - "purl": "pkg:pypi/jsonschema-specifications@2023.11.2", + "purl": "pkg:pypi/jsonschema-specifications@2023.3.6", "type": "library", - "version": "2023.11.2" + "version": "2023.3.6" }, { - "bom-ref": "license-expression==30.2.0", + "bom-ref": "license-expression==30.3.1", "description": "license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic.", "externalReferences": [ { "comment": "from packaging metadata: Home-page", "type": "website", - "url": "https://github.com/nexB/license-expression" + "url": "https://github.com/aboutcode-org/license-expression" } ], "licenses": [ @@ -480,12 +465,12 @@ } ], "name": "license-expression", - "purl": "pkg:pypi/license-expression@30.2.0", + "purl": "pkg:pypi/license-expression@30.3.1", "type": "library", - "version": "30.2.0" + "version": "30.3.1" }, { - "bom-ref": "lxml==4.9.4", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -512,12 +497,12 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@4.9.4", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "4.9.4" + "version": "5.3.0" }, { - "bom-ref": "packageurl-python==0.13.1", + "bom-ref": "packageurl-python==0.16.0", "description": "A purl aka. Package URL parser and builder", "externalReferences": [ { @@ -534,9 +519,9 @@ } ], "name": "packageurl-python", - "purl": "pkg:pypi/packageurl-python@0.13.1", + "purl": "pkg:pypi/packageurl-python@0.16.0", "type": "library", - "version": "0.13.1" + "version": "0.16.0" }, { "bom-ref": "pkgutil_resolve_name==1.3.10", @@ -561,9 +546,14 @@ "version": "1.3.10" }, { - "bom-ref": "py-serializable==0.16.0", + "bom-ref": "py-serializable==1.1.2", "description": "Library for serializing and deserializing Python Objects to and from JSON and XML.", "externalReferences": [ + { + "comment": "from packaging metadata Project-URL: Documentation", + "type": "documentation", + "url": "https://py-serializable.readthedocs.io/" + }, { "comment": "from packaging metadata Project-URL: Bug Tracker", "type": "issue-tracker", @@ -577,7 +567,7 @@ { "comment": "from packaging metadata: Home-page", "type": "website", - "url": "https://github.com/madpah/serializable" + "url": "https://github.com/madpah/serializable#readme" } ], "licenses": [ @@ -593,12 +583,12 @@ } ], "name": "py-serializable", - "purl": "pkg:pypi/py-serializable@0.16.0", + "purl": "pkg:pypi/py-serializable@1.1.2", "type": "library", - "version": "0.16.0" + "version": "1.1.2" }, { - "bom-ref": "python-dateutil==2.8.2", + "bom-ref": "python-dateutil==2.9.0.post0", "description": "Extensions to the standard Python datetime module", "externalReferences": [ { @@ -639,12 +629,12 @@ } ], "name": "python-dateutil", - "purl": "pkg:pypi/python-dateutil@2.8.2", + "purl": "pkg:pypi/python-dateutil@2.9.0.post0", "type": "library", - "version": "2.8.2" + "version": "2.9.0.post0" }, { - "bom-ref": "referencing==0.32.0", + "bom-ref": "referencing==0.35.1", "description": "JSON Referencing + Python", "externalReferences": [ { @@ -672,6 +662,11 @@ "type": "other", "url": "https://tidelift.com/subscription/pkg/pypi-referencing?utm_source=pypi-referencing&utm_medium=referral&utm_campaign=pypi-link" }, + { + "comment": "from packaging metadata Project-URL: Changelog", + "type": "release-notes", + "url": "https://referencing.readthedocs.io/en/stable/changes/" + }, { "comment": "from packaging metadata Project-URL: Homepage", "type": "website", @@ -686,9 +681,9 @@ } ], "name": "referencing", - "purl": "pkg:pypi/referencing@0.32.0", + "purl": "pkg:pypi/referencing@0.35.1", "type": "library", - "version": "0.32.0" + "version": "0.35.1" }, { "bom-ref": "rfc3339-validator==0.1.4", @@ -758,7 +753,7 @@ "version": "1.3.8" }, { - "bom-ref": "rpds-py==0.15.2", + "bom-ref": "rpds-py==0.20.0", "description": "Python bindings to Rust's persistent data structures (rpds)", "externalReferences": [ { @@ -800,9 +795,9 @@ } ], "name": "rpds-py", - "purl": "pkg:pypi/rpds-py@0.15.2", + "purl": "pkg:pypi/rpds-py@0.20.0", "type": "library", - "version": "0.15.2" + "version": "0.20.0" }, { "bom-ref": "six==1.16.0", @@ -858,7 +853,7 @@ "version": "2.4.0" }, { - "bom-ref": "types-python-dateutil==2.8.19.14", + "bom-ref": "types-python-dateutil==2.9.0.20241003", "description": "Typing stubs for python-dateutil", "externalReferences": [ { @@ -890,23 +885,19 @@ "licenses": [ { "license": { - "name": "License :: OSI Approved :: Apache Software License" + "id": "Apache-2.0" } }, { "license": { - "name": "declared license of 'types-python-dateutil'", - "text": { - "content": "Apache-2.0 license", - "contentType": "text/plain" - } + "name": "License :: OSI Approved :: Apache Software License" } } ], "name": "types-python-dateutil", - "purl": "pkg:pypi/types-python-dateutil@2.8.19.14", + "purl": "pkg:pypi/types-python-dateutil@2.9.0.20241003", "type": "library", - "version": "2.8.19.14" + "version": "2.9.0.20241003" }, { "bom-ref": "uri-template==1.3.0", @@ -940,7 +931,7 @@ "version": "1.3.0" }, { - "bom-ref": "webcolors==1.13", + "bom-ref": "webcolors==24.8.0", "description": "A library for working with the color formats defined by HTML and CSS.", "externalReferences": [ { @@ -967,17 +958,17 @@ } ], "name": "webcolors", - "purl": "pkg:pypi/webcolors@1.13", + "purl": "pkg:pypi/webcolors@24.8.0", "type": "library", - "version": "1.13" + "version": "24.8.0" }, { - "bom-ref": "zipp==3.17.0", + "bom-ref": "zipp==3.20.2", "description": "Backport of pathlib-compatible object wrapper for zip files", "externalReferences": [ { - "comment": "from packaging metadata: Home-page", - "type": "website", + "comment": "from packaging metadata Project-URL: Source", + "type": "other", "url": "https://github.com/jaraco/zipp" } ], @@ -989,35 +980,35 @@ } ], "name": "zipp", - "purl": "pkg:pypi/zipp@3.17.0", + "purl": "pkg:pypi/zipp@3.20.2", "type": "library", - "version": "3.17.0" + "version": "3.20.2" } ], "dependencies": [ { "dependsOn": [ - "python-dateutil==2.8.2", - "types-python-dateutil==2.8.19.14" + "python-dateutil==2.9.0.post0", + "types-python-dateutil==2.9.0.20241003" ], "ref": "arrow==1.3.0" }, { - "ref": "attrs==23.1.0" + "ref": "attrs==24.2.0" }, { "ref": "boolean.py==4.0" }, { "dependsOn": [ - "jsonschema==4.20.0", - "license-expression==30.2.0", - "lxml==4.9.4", - "packageurl-python==0.13.1", - "py-serializable==0.16.0", + "jsonschema==4.23.0", + "license-expression==30.3.1", + "lxml==5.3.0", + "packageurl-python==0.16.0", + "py-serializable==1.1.2", "sortedcontainers==2.4.0" ], - "ref": "cyclonedx-python-lib==6.0.0" + "ref": "cyclonedx-python-lib==8.2.0" }, { "ref": "defusedxml==0.7.1" @@ -1026,13 +1017,13 @@ "ref": "fqdn==1.5.1" }, { - "ref": "idna==3.6" + "ref": "idna==3.10" }, { "dependsOn": [ - "zipp==3.17.0" + "zipp==3.20.2" ], - "ref": "importlib-resources==6.1.1" + "ref": "importlib_resources==6.4.5" }, { "dependsOn": [ @@ -1041,45 +1032,45 @@ "ref": "isoduration==20.11.0" }, { - "ref": "jsonpointer==2.4" + "ref": "jsonpointer==3.0.0" }, { "dependsOn": [ - "importlib-resources==6.1.1", - "referencing==0.32.0" + "importlib_resources==6.4.5", + "referencing==0.35.1" ], - "ref": "jsonschema-specifications==2023.11.2" + "ref": "jsonschema-specifications==2023.3.6" }, { "dependsOn": [ - "attrs==23.1.0", + "attrs==24.2.0", "fqdn==1.5.1", - "idna==3.6", - "importlib-resources==6.1.1", + "idna==3.10", + "importlib_resources==6.4.5", "isoduration==20.11.0", - "jsonpointer==2.4", - "jsonschema-specifications==2023.11.2", + "jsonpointer==3.0.0", + "jsonschema-specifications==2023.3.6", "pkgutil_resolve_name==1.3.10", - "referencing==0.32.0", + "referencing==0.35.1", "rfc3339-validator==0.1.4", "rfc3987==1.3.8", - "rpds-py==0.15.2", + "rpds-py==0.20.0", "uri-template==1.3.0", - "webcolors==1.13" + "webcolors==24.8.0" ], - "ref": "jsonschema==4.20.0" + "ref": "jsonschema==4.23.0" }, { "dependsOn": [ "boolean.py==4.0" ], - "ref": "license-expression==30.2.0" + "ref": "license-expression==30.3.1" }, { - "ref": "lxml==4.9.4" + "ref": "lxml==5.3.0" }, { - "ref": "packageurl-python==0.13.1" + "ref": "packageurl-python==0.16.0" }, { "ref": "pkgutil_resolve_name==1.3.10" @@ -1088,20 +1079,20 @@ "dependsOn": [ "defusedxml==0.7.1" ], - "ref": "py-serializable==0.16.0" + "ref": "py-serializable==1.1.2" }, { "dependsOn": [ "six==1.16.0" ], - "ref": "python-dateutil==2.8.2" + "ref": "python-dateutil==2.9.0.post0" }, { "dependsOn": [ - "attrs==23.1.0", - "rpds-py==0.15.2" + "attrs==24.2.0", + "rpds-py==0.20.0" ], - "ref": "referencing==0.32.0" + "ref": "referencing==0.35.1" }, { "dependsOn": [ @@ -1114,12 +1105,12 @@ }, { "dependsOn": [ - "cyclonedx-python-lib==6.0.0" + "cyclonedx-python-lib==8.2.0" ], "ref": "root-component" }, { - "ref": "rpds-py==0.15.2" + "ref": "rpds-py==0.20.0" }, { "ref": "six==1.16.0" @@ -1128,16 +1119,19 @@ "ref": "sortedcontainers==2.4.0" }, { - "ref": "types-python-dateutil==2.8.19.14" + "ref": "types-python-dateutil==2.9.0.20241003" }, { "ref": "uri-template==1.3.0" }, { - "ref": "webcolors==1.13" + "ref": "webcolors==24.8.0" }, { - "ref": "zipp==3.17.0" + "dependsOn": [ + "importlib_resources==6.4.5" + ], + "ref": "zipp==3.20.2" } ], "metadata": { diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.5.xml.bin b/tests/_data/snapshots/environment/plain_with-extras_1.5.xml.bin index fb9525813..3d7a37d70 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.5.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.5.xml.bin @@ -85,29 +85,21 @@ - + attrs - 23.1.0 + 24.2.0 Classes Without Boilerplate MIT - pkg:pypi/attrs@23.1.0 + pkg:pypi/attrs@24.2.0 https://www.attrs.org/ from packaging metadata Project-URL: Documentation - - https://github.com/python-attrs/attrs/issues - from packaging metadata Project-URL: Bug Tracker - - - https://github.com/python-attrs/attrs - from packaging metadata Project-URL: Source Code - https://github.com/sponsors/hynek from packaging metadata Project-URL: Funding @@ -120,6 +112,10 @@ https://www.attrs.org/en/stable/changelog.html from packaging metadata Project-URL: Changelog + + https://github.com/python-attrs/attrs + from packaging metadata Project-URL: GitHub + @@ -139,9 +135,9 @@ - + cyclonedx-python-lib - 6.0.0 + 8.2.0 Python library for CycloneDX @@ -151,7 +147,7 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/cyclonedx-python-lib@6.0.0 + pkg:pypi/cyclonedx-python-lib@8.2.0 https://cyclonedx-python-library.readthedocs.io/ @@ -224,16 +220,16 @@ - + idna - 3.6 + 3.10 Internationalized Domain Names in Applications (IDNA) License :: OSI Approved :: BSD License - pkg:pypi/idna@3.6 + pkg:pypi/idna@3.10 https://github.com/kjd/idna/issues @@ -249,24 +245,20 @@ - - importlib-resources - 6.1.1 + + importlib_resources + 6.4.5 Read resources from Python packages License :: OSI Approved :: Apache Software License - pkg:pypi/importlib-resources@6.1.1 + pkg:pypi/importlib-resources@6.4.5 - - https://importlib-resources.readthedocs.io/ - from packaging metadata Project-URL: Documentation - - + https://github.com/python/importlib_resources - from packaging metadata: Home-page + from packaging metadata Project-URL: Source @@ -303,9 +295,9 @@ - + jsonpointer - 2.4 + 3.0.0 Identify specific nodes in a JSON document (RFC 6901) @@ -316,7 +308,7 @@ Modified BSD License - pkg:pypi/jsonpointer@2.4 + pkg:pypi/jsonpointer@3.0.0 https://github.com/stefankoegl/python-json-pointer @@ -324,16 +316,16 @@ - + jsonschema - 4.20.0 + 4.23.0 An implementation of JSON Schema validation for Python MIT - pkg:pypi/jsonschema@4.20.0 + pkg:pypi/jsonschema@4.23.0 https://python-jsonschema.readthedocs.io/ @@ -368,16 +360,16 @@ format - + jsonschema-specifications - 2023.11.2 + 2023.3.6 The JSON Schema meta-schemas and vocabularies, exposed as a Registry MIT - pkg:pypi/jsonschema-specifications@2023.11.2 + pkg:pypi/jsonschema-specifications@2023.3.6 https://jsonschema-specifications.readthedocs.io/ @@ -395,36 +387,32 @@ https://github.com/sponsors/Julian from packaging metadata Project-URL: Funding - - https://tidelift.com/subscription/pkg/pypi-jsonschema-specifications?utm_source=pypi-jsonschema-specifications&utm_medium=referral&utm_campaign=pypi-link - from packaging metadata Project-URL: Tidelift - https://github.com/python-jsonschema/jsonschema-specifications from packaging metadata Project-URL: Homepage - + license-expression - 30.2.0 + 30.3.1 license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic. Apache-2.0 - pkg:pypi/license-expression@30.2.0 + pkg:pypi/license-expression@30.3.1 - https://github.com/nexB/license-expression + https://github.com/aboutcode-org/license-expression from packaging metadata: Home-page - + lxml - 4.9.4 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -434,7 +422,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@4.9.4 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -446,16 +434,16 @@ - + packageurl-python - 0.13.1 + 0.16.0 A purl aka. Package URL parser and builder MIT - pkg:pypi/packageurl-python@0.13.1 + pkg:pypi/packageurl-python@0.16.0 https://github.com/package-url/packageurl-python @@ -480,9 +468,9 @@ - + py-serializable - 0.16.0 + 1.1.2 Library for serializing and deserializing Python Objects to and from JSON and XML. @@ -492,8 +480,12 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/py-serializable@0.16.0 + pkg:pypi/py-serializable@1.1.2 + + https://py-serializable.readthedocs.io/ + from packaging metadata Project-URL: Documentation + https://github.com/madpah/serializable/issues from packaging metadata Project-URL: Bug Tracker @@ -503,14 +495,14 @@ from packaging metadata Project-URL: Repository - https://github.com/madpah/serializable + https://github.com/madpah/serializable#readme from packaging metadata: Home-page - + python-dateutil - 2.8.2 + 2.9.0.post0 Extensions to the standard Python datetime module @@ -524,7 +516,7 @@ Dual License - pkg:pypi/python-dateutil@2.8.2 + pkg:pypi/python-dateutil@2.9.0.post0 https://dateutil.readthedocs.io/en/stable/ @@ -540,16 +532,16 @@ - + referencing - 0.32.0 + 0.35.1 JSON Referencing + Python MIT - pkg:pypi/referencing@0.32.0 + pkg:pypi/referencing@0.35.1 https://referencing.readthedocs.io/ @@ -571,6 +563,10 @@ https://tidelift.com/subscription/pkg/pypi-referencing?utm_source=pypi-referencing&utm_medium=referral&utm_campaign=pypi-link from packaging metadata Project-URL: Tidelift + + https://referencing.readthedocs.io/en/stable/changes/ + from packaging metadata Project-URL: Changelog + https://github.com/python-jsonschema/referencing from packaging metadata Project-URL: Homepage @@ -623,16 +619,16 @@ - + rpds-py - 0.15.2 + 0.20.0 Python bindings to Rust's persistent data structures (rpds) MIT - pkg:pypi/rpds-py@0.15.2 + pkg:pypi/rpds-py@0.20.0 https://rpds.readthedocs.io/ @@ -698,20 +694,19 @@ - + types-python-dateutil - 2.8.19.14 + 2.9.0.20241003 Typing stubs for python-dateutil - License :: OSI Approved :: Apache Software License + Apache-2.0 - declared license of 'types-python-dateutil' - Apache-2.0 license + License :: OSI Approved :: Apache Software License - pkg:pypi/types-python-dateutil@2.8.19.14 + pkg:pypi/types-python-dateutil@2.9.0.20241003 https://gitter.im/python/typing @@ -756,9 +751,9 @@ - + webcolors - 1.13 + 24.8.0 A library for working with the color formats defined by HTML and CSS. @@ -768,7 +763,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/webcolors@1.13 + pkg:pypi/webcolors@24.8.0 https://webcolors.readthedocs.io @@ -780,98 +775,100 @@ - + zipp - 3.17.0 + 3.20.2 Backport of pathlib-compatible object wrapper for zip files MIT - pkg:pypi/zipp@3.17.0 + pkg:pypi/zipp@3.20.2 - + https://github.com/jaraco/zipp - from packaging metadata: Home-page + from packaging metadata Project-URL: Source - - + + - + - - - - - - + + + + + + - - - + + + - - - - + + + + - - + + - - + + - - + + - + - + - + - + - - + + - + - + - - - + + + - + - + - + - - + + + + diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.6.json.bin b/tests/_data/snapshots/environment/plain_with-extras_1.6.json.bin index af786cda9..7620bcec4 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.6.json.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.6.json.bin @@ -34,7 +34,7 @@ "version": "1.3.0" }, { - "bom-ref": "attrs==23.1.0", + "bom-ref": "attrs==24.2.0", "description": "Classes Without Boilerplate", "externalReferences": [ { @@ -42,16 +42,6 @@ "type": "documentation", "url": "https://www.attrs.org/" }, - { - "comment": "from packaging metadata Project-URL: Bug Tracker", - "type": "issue-tracker", - "url": "https://github.com/python-attrs/attrs/issues" - }, - { - "comment": "from packaging metadata Project-URL: Source Code", - "type": "other", - "url": "https://github.com/python-attrs/attrs" - }, { "comment": "from packaging metadata Project-URL: Funding", "type": "other", @@ -66,6 +56,11 @@ "comment": "from packaging metadata Project-URL: Changelog", "type": "release-notes", "url": "https://www.attrs.org/en/stable/changelog.html" + }, + { + "comment": "from packaging metadata Project-URL: GitHub", + "type": "vcs", + "url": "https://github.com/python-attrs/attrs" } ], "licenses": [ @@ -77,9 +72,9 @@ } ], "name": "attrs", - "purl": "pkg:pypi/attrs@23.1.0", + "purl": "pkg:pypi/attrs@24.2.0", "type": "library", - "version": "23.1.0" + "version": "24.2.0" }, { "bom-ref": "boolean.py==4.0", @@ -105,7 +100,7 @@ "version": "4.0" }, { - "bom-ref": "cyclonedx-python-lib==6.0.0", + "bom-ref": "cyclonedx-python-lib==8.2.0", "description": "Python library for CycloneDX", "externalReferences": [ { @@ -155,9 +150,9 @@ "value": "xml-validation" } ], - "purl": "pkg:pypi/cyclonedx-python-lib@6.0.0", + "purl": "pkg:pypi/cyclonedx-python-lib@8.2.0", "type": "library", - "version": "6.0.0" + "version": "8.2.0" }, { "bom-ref": "defusedxml==0.7.1", @@ -231,7 +226,7 @@ "version": "1.5.1" }, { - "bom-ref": "idna==3.6", + "bom-ref": "idna==3.10", "description": "Internationalized Domain Names in Applications (IDNA)", "externalReferences": [ { @@ -259,22 +254,17 @@ } ], "name": "idna", - "purl": "pkg:pypi/idna@3.6", + "purl": "pkg:pypi/idna@3.10", "type": "library", - "version": "3.6" + "version": "3.10" }, { - "bom-ref": "importlib-resources==6.1.1", + "bom-ref": "importlib_resources==6.4.5", "description": "Read resources from Python packages", "externalReferences": [ { - "comment": "from packaging metadata Project-URL: Documentation", - "type": "documentation", - "url": "https://importlib-resources.readthedocs.io/" - }, - { - "comment": "from packaging metadata: Home-page", - "type": "website", + "comment": "from packaging metadata Project-URL: Source", + "type": "other", "url": "https://github.com/python/importlib_resources" } ], @@ -286,10 +276,10 @@ } } ], - "name": "importlib-resources", - "purl": "pkg:pypi/importlib-resources@6.1.1", + "name": "importlib_resources", + "purl": "pkg:pypi/importlib-resources@6.4.5", "type": "library", - "version": "6.1.1" + "version": "6.4.5" }, { "bom-ref": "isoduration==20.11.0", @@ -340,7 +330,7 @@ "version": "20.11.0" }, { - "bom-ref": "jsonpointer==2.4", + "bom-ref": "jsonpointer==3.0.0", "description": "Identify specific nodes in a JSON document (RFC 6901) ", "externalReferences": [ { @@ -368,12 +358,12 @@ } ], "name": "jsonpointer", - "purl": "pkg:pypi/jsonpointer@2.4", + "purl": "pkg:pypi/jsonpointer@3.0.0", "type": "library", - "version": "2.4" + "version": "3.0.0" }, { - "bom-ref": "jsonschema==4.20.0", + "bom-ref": "jsonschema==4.23.0", "description": "An implementation of JSON Schema validation for Python", "externalReferences": [ { @@ -427,12 +417,12 @@ "value": "format" } ], - "purl": "pkg:pypi/jsonschema@4.20.0", + "purl": "pkg:pypi/jsonschema@4.23.0", "type": "library", - "version": "4.20.0" + "version": "4.23.0" }, { - "bom-ref": "jsonschema-specifications==2023.11.2", + "bom-ref": "jsonschema-specifications==2023.3.6", "description": "The JSON Schema meta-schemas and vocabularies, exposed as a Registry", "externalReferences": [ { @@ -455,11 +445,6 @@ "type": "other", "url": "https://github.com/sponsors/Julian" }, - { - "comment": "from packaging metadata Project-URL: Tidelift", - "type": "other", - "url": "https://tidelift.com/subscription/pkg/pypi-jsonschema-specifications?utm_source=pypi-jsonschema-specifications&utm_medium=referral&utm_campaign=pypi-link" - }, { "comment": "from packaging metadata Project-URL: Homepage", "type": "website", @@ -475,18 +460,18 @@ } ], "name": "jsonschema-specifications", - "purl": "pkg:pypi/jsonschema-specifications@2023.11.2", + "purl": "pkg:pypi/jsonschema-specifications@2023.3.6", "type": "library", - "version": "2023.11.2" + "version": "2023.3.6" }, { - "bom-ref": "license-expression==30.2.0", + "bom-ref": "license-expression==30.3.1", "description": "license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic.", "externalReferences": [ { "comment": "from packaging metadata: Home-page", "type": "website", - "url": "https://github.com/nexB/license-expression" + "url": "https://github.com/aboutcode-org/license-expression" } ], "licenses": [ @@ -498,12 +483,12 @@ } ], "name": "license-expression", - "purl": "pkg:pypi/license-expression@30.2.0", + "purl": "pkg:pypi/license-expression@30.3.1", "type": "library", - "version": "30.2.0" + "version": "30.3.1" }, { - "bom-ref": "lxml==4.9.4", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -532,12 +517,12 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@4.9.4", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "4.9.4" + "version": "5.3.0" }, { - "bom-ref": "packageurl-python==0.13.1", + "bom-ref": "packageurl-python==0.16.0", "description": "A purl aka. Package URL parser and builder", "externalReferences": [ { @@ -555,9 +540,9 @@ } ], "name": "packageurl-python", - "purl": "pkg:pypi/packageurl-python@0.13.1", + "purl": "pkg:pypi/packageurl-python@0.16.0", "type": "library", - "version": "0.13.1" + "version": "0.16.0" }, { "bom-ref": "pkgutil_resolve_name==1.3.10", @@ -583,9 +568,14 @@ "version": "1.3.10" }, { - "bom-ref": "py-serializable==0.16.0", + "bom-ref": "py-serializable==1.1.2", "description": "Library for serializing and deserializing Python Objects to and from JSON and XML.", "externalReferences": [ + { + "comment": "from packaging metadata Project-URL: Documentation", + "type": "documentation", + "url": "https://py-serializable.readthedocs.io/" + }, { "comment": "from packaging metadata Project-URL: Bug Tracker", "type": "issue-tracker", @@ -599,7 +589,7 @@ { "comment": "from packaging metadata: Home-page", "type": "website", - "url": "https://github.com/madpah/serializable" + "url": "https://github.com/madpah/serializable#readme" } ], "licenses": [ @@ -617,12 +607,12 @@ } ], "name": "py-serializable", - "purl": "pkg:pypi/py-serializable@0.16.0", + "purl": "pkg:pypi/py-serializable@1.1.2", "type": "library", - "version": "0.16.0" + "version": "1.1.2" }, { - "bom-ref": "python-dateutil==2.8.2", + "bom-ref": "python-dateutil==2.9.0.post0", "description": "Extensions to the standard Python datetime module", "externalReferences": [ { @@ -666,12 +656,12 @@ } ], "name": "python-dateutil", - "purl": "pkg:pypi/python-dateutil@2.8.2", + "purl": "pkg:pypi/python-dateutil@2.9.0.post0", "type": "library", - "version": "2.8.2" + "version": "2.9.0.post0" }, { - "bom-ref": "referencing==0.32.0", + "bom-ref": "referencing==0.35.1", "description": "JSON Referencing + Python", "externalReferences": [ { @@ -699,6 +689,11 @@ "type": "other", "url": "https://tidelift.com/subscription/pkg/pypi-referencing?utm_source=pypi-referencing&utm_medium=referral&utm_campaign=pypi-link" }, + { + "comment": "from packaging metadata Project-URL: Changelog", + "type": "release-notes", + "url": "https://referencing.readthedocs.io/en/stable/changes/" + }, { "comment": "from packaging metadata Project-URL: Homepage", "type": "website", @@ -714,9 +709,9 @@ } ], "name": "referencing", - "purl": "pkg:pypi/referencing@0.32.0", + "purl": "pkg:pypi/referencing@0.35.1", "type": "library", - "version": "0.32.0" + "version": "0.35.1" }, { "bom-ref": "rfc3339-validator==0.1.4", @@ -790,7 +785,7 @@ "version": "1.3.8" }, { - "bom-ref": "rpds-py==0.15.2", + "bom-ref": "rpds-py==0.20.0", "description": "Python bindings to Rust's persistent data structures (rpds)", "externalReferences": [ { @@ -833,9 +828,9 @@ } ], "name": "rpds-py", - "purl": "pkg:pypi/rpds-py@0.15.2", + "purl": "pkg:pypi/rpds-py@0.20.0", "type": "library", - "version": "0.15.2" + "version": "0.20.0" }, { "bom-ref": "six==1.16.0", @@ -894,7 +889,7 @@ "version": "2.4.0" }, { - "bom-ref": "types-python-dateutil==2.8.19.14", + "bom-ref": "types-python-dateutil==2.9.0.20241003", "description": "Typing stubs for python-dateutil", "externalReferences": [ { @@ -927,24 +922,20 @@ { "license": { "acknowledgement": "declared", - "name": "License :: OSI Approved :: Apache Software License" + "id": "Apache-2.0" } }, { "license": { "acknowledgement": "declared", - "name": "declared license of 'types-python-dateutil'", - "text": { - "content": "Apache-2.0 license", - "contentType": "text/plain" - } + "name": "License :: OSI Approved :: Apache Software License" } } ], "name": "types-python-dateutil", - "purl": "pkg:pypi/types-python-dateutil@2.8.19.14", + "purl": "pkg:pypi/types-python-dateutil@2.9.0.20241003", "type": "library", - "version": "2.8.19.14" + "version": "2.9.0.20241003" }, { "bom-ref": "uri-template==1.3.0", @@ -980,7 +971,7 @@ "version": "1.3.0" }, { - "bom-ref": "webcolors==1.13", + "bom-ref": "webcolors==24.8.0", "description": "A library for working with the color formats defined by HTML and CSS.", "externalReferences": [ { @@ -1009,17 +1000,17 @@ } ], "name": "webcolors", - "purl": "pkg:pypi/webcolors@1.13", + "purl": "pkg:pypi/webcolors@24.8.0", "type": "library", - "version": "1.13" + "version": "24.8.0" }, { - "bom-ref": "zipp==3.17.0", + "bom-ref": "zipp==3.20.2", "description": "Backport of pathlib-compatible object wrapper for zip files", "externalReferences": [ { - "comment": "from packaging metadata: Home-page", - "type": "website", + "comment": "from packaging metadata Project-URL: Source", + "type": "other", "url": "https://github.com/jaraco/zipp" } ], @@ -1032,35 +1023,35 @@ } ], "name": "zipp", - "purl": "pkg:pypi/zipp@3.17.0", + "purl": "pkg:pypi/zipp@3.20.2", "type": "library", - "version": "3.17.0" + "version": "3.20.2" } ], "dependencies": [ { "dependsOn": [ - "python-dateutil==2.8.2", - "types-python-dateutil==2.8.19.14" + "python-dateutil==2.9.0.post0", + "types-python-dateutil==2.9.0.20241003" ], "ref": "arrow==1.3.0" }, { - "ref": "attrs==23.1.0" + "ref": "attrs==24.2.0" }, { "ref": "boolean.py==4.0" }, { "dependsOn": [ - "jsonschema==4.20.0", - "license-expression==30.2.0", - "lxml==4.9.4", - "packageurl-python==0.13.1", - "py-serializable==0.16.0", + "jsonschema==4.23.0", + "license-expression==30.3.1", + "lxml==5.3.0", + "packageurl-python==0.16.0", + "py-serializable==1.1.2", "sortedcontainers==2.4.0" ], - "ref": "cyclonedx-python-lib==6.0.0" + "ref": "cyclonedx-python-lib==8.2.0" }, { "ref": "defusedxml==0.7.1" @@ -1069,13 +1060,13 @@ "ref": "fqdn==1.5.1" }, { - "ref": "idna==3.6" + "ref": "idna==3.10" }, { "dependsOn": [ - "zipp==3.17.0" + "zipp==3.20.2" ], - "ref": "importlib-resources==6.1.1" + "ref": "importlib_resources==6.4.5" }, { "dependsOn": [ @@ -1084,45 +1075,45 @@ "ref": "isoduration==20.11.0" }, { - "ref": "jsonpointer==2.4" + "ref": "jsonpointer==3.0.0" }, { "dependsOn": [ - "importlib-resources==6.1.1", - "referencing==0.32.0" + "importlib_resources==6.4.5", + "referencing==0.35.1" ], - "ref": "jsonschema-specifications==2023.11.2" + "ref": "jsonschema-specifications==2023.3.6" }, { "dependsOn": [ - "attrs==23.1.0", + "attrs==24.2.0", "fqdn==1.5.1", - "idna==3.6", - "importlib-resources==6.1.1", + "idna==3.10", + "importlib_resources==6.4.5", "isoduration==20.11.0", - "jsonpointer==2.4", - "jsonschema-specifications==2023.11.2", + "jsonpointer==3.0.0", + "jsonschema-specifications==2023.3.6", "pkgutil_resolve_name==1.3.10", - "referencing==0.32.0", + "referencing==0.35.1", "rfc3339-validator==0.1.4", "rfc3987==1.3.8", - "rpds-py==0.15.2", + "rpds-py==0.20.0", "uri-template==1.3.0", - "webcolors==1.13" + "webcolors==24.8.0" ], - "ref": "jsonschema==4.20.0" + "ref": "jsonschema==4.23.0" }, { "dependsOn": [ "boolean.py==4.0" ], - "ref": "license-expression==30.2.0" + "ref": "license-expression==30.3.1" }, { - "ref": "lxml==4.9.4" + "ref": "lxml==5.3.0" }, { - "ref": "packageurl-python==0.13.1" + "ref": "packageurl-python==0.16.0" }, { "ref": "pkgutil_resolve_name==1.3.10" @@ -1131,20 +1122,20 @@ "dependsOn": [ "defusedxml==0.7.1" ], - "ref": "py-serializable==0.16.0" + "ref": "py-serializable==1.1.2" }, { "dependsOn": [ "six==1.16.0" ], - "ref": "python-dateutil==2.8.2" + "ref": "python-dateutil==2.9.0.post0" }, { "dependsOn": [ - "attrs==23.1.0", - "rpds-py==0.15.2" + "attrs==24.2.0", + "rpds-py==0.20.0" ], - "ref": "referencing==0.32.0" + "ref": "referencing==0.35.1" }, { "dependsOn": [ @@ -1157,12 +1148,12 @@ }, { "dependsOn": [ - "cyclonedx-python-lib==6.0.0" + "cyclonedx-python-lib==8.2.0" ], "ref": "root-component" }, { - "ref": "rpds-py==0.15.2" + "ref": "rpds-py==0.20.0" }, { "ref": "six==1.16.0" @@ -1171,16 +1162,19 @@ "ref": "sortedcontainers==2.4.0" }, { - "ref": "types-python-dateutil==2.8.19.14" + "ref": "types-python-dateutil==2.9.0.20241003" }, { "ref": "uri-template==1.3.0" }, { - "ref": "webcolors==1.13" + "ref": "webcolors==24.8.0" }, { - "ref": "zipp==3.17.0" + "dependsOn": [ + "importlib_resources==6.4.5" + ], + "ref": "zipp==3.20.2" } ], "metadata": { diff --git a/tests/_data/snapshots/environment/plain_with-extras_1.6.xml.bin b/tests/_data/snapshots/environment/plain_with-extras_1.6.xml.bin index 90da156fe..a4fb2708c 100644 --- a/tests/_data/snapshots/environment/plain_with-extras_1.6.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-extras_1.6.xml.bin @@ -85,29 +85,21 @@ - + attrs - 23.1.0 + 24.2.0 Classes Without Boilerplate MIT - pkg:pypi/attrs@23.1.0 + pkg:pypi/attrs@24.2.0 https://www.attrs.org/ from packaging metadata Project-URL: Documentation - - https://github.com/python-attrs/attrs/issues - from packaging metadata Project-URL: Bug Tracker - - - https://github.com/python-attrs/attrs - from packaging metadata Project-URL: Source Code - https://github.com/sponsors/hynek from packaging metadata Project-URL: Funding @@ -120,6 +112,10 @@ https://www.attrs.org/en/stable/changelog.html from packaging metadata Project-URL: Changelog + + https://github.com/python-attrs/attrs + from packaging metadata Project-URL: GitHub + @@ -139,9 +135,9 @@ - + cyclonedx-python-lib - 6.0.0 + 8.2.0 Python library for CycloneDX @@ -151,7 +147,7 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/cyclonedx-python-lib@6.0.0 + pkg:pypi/cyclonedx-python-lib@8.2.0 https://cyclonedx-python-library.readthedocs.io/ @@ -224,16 +220,16 @@ - + idna - 3.6 + 3.10 Internationalized Domain Names in Applications (IDNA) License :: OSI Approved :: BSD License - pkg:pypi/idna@3.6 + pkg:pypi/idna@3.10 https://github.com/kjd/idna/issues @@ -249,24 +245,20 @@ - - importlib-resources - 6.1.1 + + importlib_resources + 6.4.5 Read resources from Python packages License :: OSI Approved :: Apache Software License - pkg:pypi/importlib-resources@6.1.1 + pkg:pypi/importlib-resources@6.4.5 - - https://importlib-resources.readthedocs.io/ - from packaging metadata Project-URL: Documentation - - + https://github.com/python/importlib_resources - from packaging metadata: Home-page + from packaging metadata Project-URL: Source @@ -303,9 +295,9 @@ - + jsonpointer - 2.4 + 3.0.0 Identify specific nodes in a JSON document (RFC 6901) @@ -316,7 +308,7 @@ Modified BSD License - pkg:pypi/jsonpointer@2.4 + pkg:pypi/jsonpointer@3.0.0 https://github.com/stefankoegl/python-json-pointer @@ -324,16 +316,16 @@ - + jsonschema - 4.20.0 + 4.23.0 An implementation of JSON Schema validation for Python MIT - pkg:pypi/jsonschema@4.20.0 + pkg:pypi/jsonschema@4.23.0 https://python-jsonschema.readthedocs.io/ @@ -368,16 +360,16 @@ format - + jsonschema-specifications - 2023.11.2 + 2023.3.6 The JSON Schema meta-schemas and vocabularies, exposed as a Registry MIT - pkg:pypi/jsonschema-specifications@2023.11.2 + pkg:pypi/jsonschema-specifications@2023.3.6 https://jsonschema-specifications.readthedocs.io/ @@ -395,36 +387,32 @@ https://github.com/sponsors/Julian from packaging metadata Project-URL: Funding - - https://tidelift.com/subscription/pkg/pypi-jsonschema-specifications?utm_source=pypi-jsonschema-specifications&utm_medium=referral&utm_campaign=pypi-link - from packaging metadata Project-URL: Tidelift - https://github.com/python-jsonschema/jsonschema-specifications from packaging metadata Project-URL: Homepage - + license-expression - 30.2.0 + 30.3.1 license-expression is a comprehensive utility library to parse, compare, simplify and normalize license expressions (such as SPDX license expressions) using boolean logic. Apache-2.0 - pkg:pypi/license-expression@30.2.0 + pkg:pypi/license-expression@30.3.1 - https://github.com/nexB/license-expression + https://github.com/aboutcode-org/license-expression from packaging metadata: Home-page - + lxml - 4.9.4 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -434,7 +422,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@4.9.4 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -446,16 +434,16 @@ - + packageurl-python - 0.13.1 + 0.16.0 A purl aka. Package URL parser and builder MIT - pkg:pypi/packageurl-python@0.13.1 + pkg:pypi/packageurl-python@0.16.0 https://github.com/package-url/packageurl-python @@ -480,9 +468,9 @@ - + py-serializable - 0.16.0 + 1.1.2 Library for serializing and deserializing Python Objects to and from JSON and XML. @@ -492,8 +480,12 @@ License :: OSI Approved :: Apache Software License - pkg:pypi/py-serializable@0.16.0 + pkg:pypi/py-serializable@1.1.2 + + https://py-serializable.readthedocs.io/ + from packaging metadata Project-URL: Documentation + https://github.com/madpah/serializable/issues from packaging metadata Project-URL: Bug Tracker @@ -503,14 +495,14 @@ from packaging metadata Project-URL: Repository - https://github.com/madpah/serializable + https://github.com/madpah/serializable#readme from packaging metadata: Home-page - + python-dateutil - 2.8.2 + 2.9.0.post0 Extensions to the standard Python datetime module @@ -524,7 +516,7 @@ Dual License - pkg:pypi/python-dateutil@2.8.2 + pkg:pypi/python-dateutil@2.9.0.post0 https://dateutil.readthedocs.io/en/stable/ @@ -540,16 +532,16 @@ - + referencing - 0.32.0 + 0.35.1 JSON Referencing + Python MIT - pkg:pypi/referencing@0.32.0 + pkg:pypi/referencing@0.35.1 https://referencing.readthedocs.io/ @@ -571,6 +563,10 @@ https://tidelift.com/subscription/pkg/pypi-referencing?utm_source=pypi-referencing&utm_medium=referral&utm_campaign=pypi-link from packaging metadata Project-URL: Tidelift + + https://referencing.readthedocs.io/en/stable/changes/ + from packaging metadata Project-URL: Changelog + https://github.com/python-jsonschema/referencing from packaging metadata Project-URL: Homepage @@ -623,16 +619,16 @@ - + rpds-py - 0.15.2 + 0.20.0 Python bindings to Rust's persistent data structures (rpds) MIT - pkg:pypi/rpds-py@0.15.2 + pkg:pypi/rpds-py@0.20.0 https://rpds.readthedocs.io/ @@ -698,20 +694,19 @@ - + types-python-dateutil - 2.8.19.14 + 2.9.0.20241003 Typing stubs for python-dateutil - License :: OSI Approved :: Apache Software License + Apache-2.0 - declared license of 'types-python-dateutil' - Apache-2.0 license + License :: OSI Approved :: Apache Software License - pkg:pypi/types-python-dateutil@2.8.19.14 + pkg:pypi/types-python-dateutil@2.9.0.20241003 https://gitter.im/python/typing @@ -756,9 +751,9 @@ - + webcolors - 1.13 + 24.8.0 A library for working with the color formats defined by HTML and CSS. @@ -768,7 +763,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/webcolors@1.13 + pkg:pypi/webcolors@24.8.0 https://webcolors.readthedocs.io @@ -780,98 +775,100 @@ - + zipp - 3.17.0 + 3.20.2 Backport of pathlib-compatible object wrapper for zip files MIT - pkg:pypi/zipp@3.17.0 + pkg:pypi/zipp@3.20.2 - + https://github.com/jaraco/zipp - from packaging metadata: Home-page + from packaging metadata Project-URL: Source - - + + - + - - - - - - + + + + + + - - - + + + - - - - + + + + - - + + - - + + - - + + - + - + - + - + - - + + - + - + - - - + + + - + - + - + - - + + + + diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.0.xml.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.0.xml.bin index c9d3c8c8e..30926376e 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.0.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.0.xml.bin @@ -31,9 +31,9 @@ lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 false diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.1.xml.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.1.xml.bin index d146bbfc6..ad814a1ad 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.1.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.1.xml.bin @@ -89,9 +89,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -101,7 +101,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.2.json.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.2.json.bin index 07ab2198e..2b07c487b 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.2.json.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.2.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.2.xml.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.2.xml.bin index f66944050..1fd52e174 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.2.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.2.xml.bin @@ -108,9 +108,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -120,7 +120,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -140,13 +140,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.3.json.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.3.json.bin index b5fc2710e..d6f567ccb 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.3.json.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.3.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.3.xml.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.3.xml.bin index 7332598ca..2adf6f345 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.3.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.3.xml.bin @@ -111,9 +111,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -123,7 +123,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -143,13 +143,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.4.json.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.4.json.bin index 565f0e8c2..3bc42630e 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.4.json.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.4.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.4.xml.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.4.xml.bin index 61db29c5d..a626ad20b 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.4.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.4.xml.bin @@ -138,9 +138,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -150,7 +150,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -170,13 +170,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.5.json.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.5.json.bin index db5b81a85..d7a420f77 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.5.json.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.5.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.5.xml.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.5.xml.bin index 1e93e3eb1..600ad9579 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.5.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.5.xml.bin @@ -148,9 +148,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -160,7 +160,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -180,13 +180,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.6.json.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.6.json.bin index 4d3832ff5..35f60e13d 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.6.json.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.6.json.bin @@ -123,7 +123,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -152,9 +152,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -174,7 +174,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -182,7 +182,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/plain_with-license-pep639_1.6.xml.bin b/tests/_data/snapshots/environment/plain_with-license-pep639_1.6.xml.bin index 5c97bd7c8..c75ea33b0 100644 --- a/tests/_data/snapshots/environment/plain_with-license-pep639_1.6.xml.bin +++ b/tests/_data/snapshots/environment/plain_with-license-pep639_1.6.xml.bin @@ -148,9 +148,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -160,7 +160,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -180,13 +180,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.0.xml.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.0.xml.bin index c9d3c8c8e..30926376e 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.0.xml.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.0.xml.bin @@ -31,9 +31,9 @@ lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 false diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.1.xml.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.1.xml.bin index d146bbfc6..ad814a1ad 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.1.xml.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.1.xml.bin @@ -89,9 +89,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -101,7 +101,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.2.json.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.2.json.bin index 07ab2198e..2b07c487b 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.2.json.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.2.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.2.xml.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.2.xml.bin index f66944050..1fd52e174 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.2.xml.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.2.xml.bin @@ -108,9 +108,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -120,7 +120,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -140,13 +140,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.3.json.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.3.json.bin index b5fc2710e..d6f567ccb 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.3.json.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.3.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.3.xml.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.3.xml.bin index 7332598ca..2adf6f345 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.3.xml.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.3.xml.bin @@ -111,9 +111,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -123,7 +123,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -143,13 +143,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.4.json.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.4.json.bin index 565f0e8c2..3bc42630e 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.4.json.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.4.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.4.xml.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.4.xml.bin index 61db29c5d..a626ad20b 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.4.xml.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.4.xml.bin @@ -138,9 +138,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -150,7 +150,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -170,13 +170,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.5.json.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.5.json.bin index db5b81a85..d7a420f77 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.5.json.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.5.json.bin @@ -118,7 +118,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -145,9 +145,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -167,7 +167,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -175,7 +175,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.5.xml.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.5.xml.bin index 1e93e3eb1..600ad9579 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.5.xml.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.5.xml.bin @@ -148,9 +148,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -160,7 +160,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -180,13 +180,13 @@ - + - + diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.6.json.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.6.json.bin index 4d3832ff5..35f60e13d 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.6.json.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.6.json.bin @@ -123,7 +123,7 @@ "version": "30.3.0" }, { - "bom-ref": "lxml==5.2.2", + "bom-ref": "lxml==5.3.0", "description": "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API.", "externalReferences": [ { @@ -152,9 +152,9 @@ } ], "name": "lxml", - "purl": "pkg:pypi/lxml@5.2.2", + "purl": "pkg:pypi/lxml@5.3.0", "type": "library", - "version": "5.2.2" + "version": "5.3.0" } ], "dependencies": [ @@ -174,7 +174,7 @@ "ref": "license-expression==30.3.0" }, { - "ref": "lxml==5.2.2" + "ref": "lxml==5.3.0" }, { "dependsOn": [ @@ -182,7 +182,7 @@ "boolean.py==4.0", "jsonpointer==2.4", "license-expression==30.3.0", - "lxml==5.2.2" + "lxml==5.3.0" ], "ref": "root-component" } diff --git a/tests/_data/snapshots/environment/texts_with-license-pep639_1.6.xml.bin b/tests/_data/snapshots/environment/texts_with-license-pep639_1.6.xml.bin index 5c97bd7c8..c75ea33b0 100644 --- a/tests/_data/snapshots/environment/texts_with-license-pep639_1.6.xml.bin +++ b/tests/_data/snapshots/environment/texts_with-license-pep639_1.6.xml.bin @@ -148,9 +148,9 @@ - + lxml - 5.2.2 + 5.3.0 Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API. @@ -160,7 +160,7 @@ License :: OSI Approved :: BSD License - pkg:pypi/lxml@5.2.2 + pkg:pypi/lxml@5.3.0 https://github.com/lxml/lxml @@ -180,13 +180,13 @@ - + - + diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.0.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.0.xml.bin index d7e20304e..2046e1a89 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.0.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.0.xml.bin @@ -221,7 +221,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 false diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.1.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.1.xml.bin index 12b13fc83..9a9a9026b 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.1.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.1.xml.bin @@ -190,7 +190,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.2.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.2.xml.bin index 05c8ecfa3..30d33957a 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.2.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.2.xml.bin @@ -209,7 +209,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.3.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.3.xml.bin index 2871e35c2..ea47bef36 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.3.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.3.xml.bin @@ -305,7 +305,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 main diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.4.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.4.xml.bin index 95195b352..d7149087d 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.4.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.4.xml.bin @@ -332,7 +332,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 main diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.5.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.5.xml.bin index 825f89ffe..1a5ebf4bf 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.5.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.5.xml.bin @@ -342,7 +342,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 main diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.6.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.6.xml.bin index b479e1af2..a7fd12c41 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.6.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock10_1.6.xml.bin @@ -342,7 +342,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 main diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.0.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.0.xml.bin index d7e20304e..2046e1a89 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.0.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.0.xml.bin @@ -221,7 +221,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 false diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.1.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.1.xml.bin index 383ac6676..096ccf33c 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.1.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.1.xml.bin @@ -2224,7 +2224,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.2.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.2.xml.bin index 23390b832..dde1d86ec 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.2.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.2.xml.bin @@ -2243,7 +2243,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.3.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.3.xml.bin index 09a1e9aea..5c1764765 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.3.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.3.xml.bin @@ -3818,7 +3818,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.4.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.4.xml.bin index dace3aea6..dd4ba1203 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.4.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.4.xml.bin @@ -3845,7 +3845,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.5.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.5.xml.bin index 6f5f290e9..ed1ddc601 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.5.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.5.xml.bin @@ -3855,7 +3855,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.6.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.6.xml.bin index 156c634e2..2efde0458 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.6.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock11_1.6.xml.bin @@ -3855,7 +3855,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.0.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.0.xml.bin index a6f16e5bf..023b48649 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.0.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.0.xml.bin @@ -228,7 +228,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 false diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.1.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.1.xml.bin index d0457a461..f25efa48b 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.1.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.1.xml.bin @@ -2376,7 +2376,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.2.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.2.xml.bin index 3e80bfcfb..ad1333193 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.2.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.2.xml.bin @@ -2395,7 +2395,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.3.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.3.xml.bin index 500e26725..4920f0f89 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.3.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.3.xml.bin @@ -3985,7 +3985,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.4.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.4.xml.bin index 2e460e4ac..fd782f138 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.4.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.4.xml.bin @@ -4012,7 +4012,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.5.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.5.xml.bin index c6c6d7f8e..0f583e347 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.5.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.5.xml.bin @@ -4022,7 +4022,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.6.xml.bin b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.6.xml.bin index 6413a460a..4b24be09c 100644 --- a/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.6.xml.bin +++ b/tests/_data/snapshots/poetry/plain_regression-issue702_lock20_1.6.xml.bin @@ -4022,7 +4022,7 @@ platformdirs 4.2.0 - A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". + A small Python package for determining appropriate platform-specific dirs, e.g. a "user data dir". pkg:pypi/platformdirs@4.2.0 diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.0.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.0.xml.bin index 02dcb2592..b17cac07c 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.0.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.0.xml.bin @@ -25,7 +25,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl false diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.1.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.1.xml.bin index 512c4e2c2..76d93c3fe 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.1.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.1.xml.bin @@ -40,7 +40,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.2.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.2.xml.bin index 1aa0c34c2..2b1a7c233 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.2.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.2.xml.bin @@ -59,7 +59,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.3.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.3.xml.bin index 2233bc93d..e38dbfd83 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.3.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.3.xml.bin @@ -73,7 +73,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.4.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.4.xml.bin index 47088e913..74ba1744a 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.4.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.4.xml.bin @@ -100,7 +100,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.5.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.5.xml.bin index 76d636cdf..106cbb660 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.5.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.5.xml.bin @@ -110,7 +110,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.6.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.6.xml.bin index 6cf350dbd..9143bd0aa 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.6.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock10_1.6.xml.bin @@ -110,7 +110,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.0.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.0.xml.bin index 02dcb2592..b17cac07c 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.0.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.0.xml.bin @@ -25,7 +25,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl false diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.1.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.1.xml.bin index 512c4e2c2..76d93c3fe 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.1.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.1.xml.bin @@ -40,7 +40,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.2.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.2.xml.bin index 1aa0c34c2..2b1a7c233 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.2.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.2.xml.bin @@ -59,7 +59,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.3.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.3.xml.bin index b85392b13..001715c1a 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.3.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.3.xml.bin @@ -75,7 +75,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.4.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.4.xml.bin index 9f059cb37..ed9a5f1f3 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.4.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.4.xml.bin @@ -102,7 +102,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.5.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.5.xml.bin index 1e857088f..a4fcebb39 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.5.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.5.xml.bin @@ -112,7 +112,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.6.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.6.xml.bin index df4ecd317..9eb7043d4 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.6.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock11_1.6.xml.bin @@ -112,7 +112,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.0.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.0.xml.bin index 02dcb2592..b17cac07c 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.0.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.0.xml.bin @@ -25,7 +25,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl false diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.1.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.1.xml.bin index 512c4e2c2..76d93c3fe 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.1.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.1.xml.bin @@ -40,7 +40,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.2.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.2.xml.bin index 1aa0c34c2..2b1a7c233 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.2.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.2.xml.bin @@ -59,7 +59,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.3.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.3.xml.bin index 0f9a731fa..129152f4d 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.3.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.3.xml.bin @@ -78,7 +78,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.4.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.4.xml.bin index 475417f4c..8cfca3e1f 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.4.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.4.xml.bin @@ -105,7 +105,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.5.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.5.xml.bin index ccdeee1b0..8776895bc 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.5.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.5.xml.bin @@ -115,7 +115,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.6.xml.bin b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.6.xml.bin index bbdccc43d..e45ff8e11 100644 --- a/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.6.xml.bin +++ b/tests/_data/snapshots/poetry/plain_with-urls_lock20_1.6.xml.bin @@ -115,7 +115,7 @@ wxPython 4.2.2a1.dev5618+1f82021f - Cross platform GUI toolkit for Python, "Phoenix" version + Cross platform GUI toolkit for Python, "Phoenix" version pkg:pypi/wxpython@4.2.2a1.dev5618%2B1f82021f?download_url=https://wxpython.org/Phoenix/snapshot-builds/wxPython-4.2.2a1.dev5618%2B1f82021f-cp38-cp38-win32.whl diff --git a/tox.ini b/tox.ini index de172dffa..4918a15dd 100644 --- a/tox.ini +++ b/tox.ini @@ -8,7 +8,7 @@ minversion = 4.0 envlist = flake8 mypy-{current,lowest} - py{312,311,310,39,38} + py{313,312,311,310,39,38} bandit skip_missing_interpreters = True usedevelop = False